Not all hackers are bad—in fact, ethical hackers can help companies strengthen their security measures. But how does bug bounty programs and responsible disclosure programs work, and what does the process of ethical hacking look like?
Every organisation—from startups to large, global corporations and nonprofits—must make sure that they have procedures to keep up with an ever-changing landscape of threats and vulnerabilities to keep its assets secure. But what is an IT Security Policy, and how do you enforce them?
People remain the weakest links in a business. By establishing a strong culture for cyber security, you lay the foundation for making your employees a strength rather than a risk–which leads to a decreased number of threats in the long run.
The cyber threat landscape is transforming and we need to stay alert and focused to not become victims of fraudulent attempts and scams–especially now that many of us are working from home. But how do we keep our devices and Internet connection secure from cybercrime when working remotely?
Social engineering (social manipulation) is one of the most widespread cybersecurity attacks. But what is it and how can your business, or even you as an employee, prevent such attacks from succeeding–or prevent them from happening altogether?
According to this year’s Hidden Statistics report carried out by The Norwegian Business and Industry Security Council (NSR), 59% of the companies that have been victimised of cyberattacks in 2019 identified the incident by chance and not as a result of well-established routines, policies and security frameworks. Here are some of the key findings from the report.
In software products and services, there is always a risk of bugs and vulnerabilities. Through our Bug Bounty program, we and our partner companies invite ethical hackers to help us find these vulnerabilities, so that they can be fixed faster.
Password hackers have access to better password hacking software and tools and passwords are stolen more than ever before. So how do you stay secure?
We believe it is important to make sure that all the work we do is in line with leading international privacy regulations. Visma is pleased to offer our customers one of the first audit assurance reports; the ISAE 300 type I, issued on June 16th 2020, made for compliance towards GDPR, in this case for the Visma EasyCruit product!
We have been an early adopter of 2FA to provide secure access to customer data. Earlier this year we also added support for the newer FIDO2 standard for 2FA, making us one of the first large enterprises in Europe to adopt this innovative technology.
The power of getting your voice heard, and the knowledge that what you say, actually matters, is what has brought success into Visma’s’ security program. We are proud to share how Visma managed to embed security into the software development teams’ culture, and thereafter, successfully increase security.
Is there a way to fix security issues in codes faster? In this article, our Product Security team will share how they improved the timeline to fix security issues in the analysis part of the source code.
As the world faces uncertainty in the current situation, there is one group seizing the moment: digital scoundrels. But how do they operate and what kind of cyber attacks can we anticipate during these times?
What methods do fraudsters use and what can be expected from us as employees and citizens to protect ourselves from fraud?Here are seven things you should know about cyber hygiene.
Did you know that a printer or outdated device connected to your network can be an entry into your systems for cybercriminals? As more and more devices are connected to the Internet, the chance of a digital attack happening also increases. We’ve had a chat with the Operations and Security Manager at Visma about this.
Visma’s model for delivery of cloud services has achieved ISO 27001 certification, adhering to international best practices within security. But what does this entail?
Even if you are a sunglasses salesman, some types of clouds can be good for your business. When talking about cloud technology and cloud services, the word ‘cloud’ is essentially just a metaphor for the Internet.