Bumblebee is a highly sophisticated downloader malware cybercriminals use to gain access to corporate networks and deliver other payloads such as Cobalt Strike beacons and ransomware. The Google Threat Analysis Group first discovered the malware in March 2022 and named it Bumblebee based on a User-Agent string it used. The Netskope Threat Labs team discovered what seems to be a new infection chain leading to Bumblebee malware infection, and our findings corroborate those shared by other researchers.

Modern software development teams will have individual preferences about whether to use IDEs or which testing framework or coding convention to adopt. However, for teams that want to deliver high-quality software at a rapid pace, continuous integration and continuous delivery (CI/CD) is a must-have. Mature, high-performing dev teams lean heavily on their CI/CD pipeline. Because of this heavy dependence on CI/CD, ensuring the security of your CI/CD pipeline is incredibly important.

Cyber threats against AI systems are on the rise, and today’s AI developers need a robust approach to securing AI applications that address the unique vulnerabilities and attack patterns associated with AI systems and ML models deployed in production environments. In this blog, we’re taking a closer look at two specific tools that AI developers can use to help detect cyber threats against AI systems.

In our previous blog, Data in use and why you need to keep an eye on file activities, we discussed why you should monitor how your data is being used, threats to data in use, and how you can protect it. But, when your data is on the move, you need other security capabilities to secure it. In this blog, we’ll explore data in motion. Gone are the days when you’d simply store your data in your local database and share it with peers when required.

Cyberattacks are getting worse, and traditional security methods are not enough. Businesses now face threats like identity theft and social engineering, making it harder to protect their data. With more employees working remotely and companies moving to cloud-based apps, adopting a Zero Trust approach is more important than ever.

System for Cross-domain Identity Management (SCIM) provisioning is a tool that helps simplify the management of user information across different systems. The information needed on multiple devices or systems will be the same, so instead of a user entering their information over and over again to access data, SCIM connects their identity with your organization’s various systems. Keep reading to learn the ways SCIM provisioning can be used, how it works and its benefits.