Security | Threat Detection | Cyberattacks | DevSecOps | Compliance
The Latest Cybersecurity News & Insights From Around The World
%term
Managing Foreign Government Information (FGI) on a Network
If you’re a firm that works with foreign governments, in addition to certifications like ISO 27001 that you will generally need to achieve, you will also have to have processes in place for handling foreign government information or FGI. It’s not enough that your internal network is classified and access controlled; you need specific handling processes and procedures for managing FGI separately from other confidential or classified data you may have.
How to spotlight search across every Mac with osquery
In this article, we discuss how admins can programmatically access Spotlight using a utility called osquery, and we demonstrate useful queries you can run to find evidence of compromise in your organization.
Presenting the sensitive data report
In this blog, we summarize the results of a fall 2022 survey of IT, helpdesk, and security professionals about how their companies protect sensitive data.
CVE-2024-28988: Critical Java Deserialization RCE Vulnerability Impacts SolarWinds Web Help Desk
On October 15, 2024, SolarWinds released a hotfix for CVE-2024-28988, a critical Remote Code Execution (RCE) vulnerability affecting Web Help Desk (WHD). WHD is an IT service management software widely used across various industries for tracking and managing support tickets. This vulnerability arises from a Java deserialization flaw, which could enable a remote unauthenticated attacker to execute arbitrary code on vulnerable hosts.
FBI Warns Scammers Are Targeting Law Firms For Phony Debt Collections
The U.S. FBI warns that scammers are attempting to trick law firms into transferring money as part of a phony debt collection scheme. The scam “may focus on any type of representation where a lawyer is hired to assist in the transfer or collection of money, e.g. real estate, collection matters, collaborative law agreements in family matters, etc.” The schemes typically take the following steps: The FBI outlines some recommendations to help organizations avoid falling for these scams.
Phishing Attacks Are Abusing Legitimate Services to Avoid Detection
Microsoft warns that threat actors are abusing legitimate file-hosting services to launch phishing attacks. These attacks are more likely to bypass security filters and appear more convincing to employees who frequently use these services. “Legitimate hosting services, such as SharePoint, OneDrive, and Dropbox, are widely used by organizations for storing, sharing, and collaborating on files,” Microsoft says.
DORA Compliance: Key Insights for Financial Institutions on New EU Regulations
As the January 2025 deadline approaches, financial institutions across the European Union prepare to increase their financial data security by meeting regulatory compliance standards with the Digital Operational Resilience Act (DORA). But what exactly is DORA, and why does it matter for your organisation? Let’s take a closer look.
Attack Vector vs Attack Surface: What's the Difference?
The main difference between an attack vector and an attack surface is that an attack vector is the specific way a cybercriminal can take advantage of an entry point, whereas an attack surface is the total number of entry points that a cybercriminal could potentially exploit.
Converge 2024 Labs - Revolutionizing Patch Operations with ServiceNow & Tanium - Tech Talks #108-3
Revolutionizing Patch Operations with ServiceNow and Tanium Many IT Operations teams spend countless hours submitting change requests for their patching activities. Imagine a world where IT Ops staff can save time by opening changes for their patch activities in ServiceNow and have them be scheduled automatically after they are approved. The future is now! In this hands-on lab, participants will have access to their own Tanium and ServiceNow environments to perform an automated monthly patching cycle orchestrated by ServiceNow.