Savings came from lower licencing costs and fewer training and service requirements
NCSC advises patching window of 5-7 days; UK currently stands at 15-17 days MTTR.
No patch yet so disable web UI on affected devices
Keeping development and cloud teams within the security guardrails takes a bit of know-how, says security lead John Day
The imperatives of digital mean that security is now about quantifying and managing risk, rather than regulatory compliance, says Sumedh Thakar
Funded Cyber Essentials Programme will be free for some small charities and legal groups that handle sensitive data
The bipartisan Securing Open Source Software Act is a positive development for open source software everywhere
The 12-year-old flaw exists in the pkexec component of Polkit system utility
Open source is everywhere, including critical infrastructure. Should governments be playing more of a role in its governance?
Four security vendors give their view on staffing issues, zero trust and threat intelligence