Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

June 2023

XDR vs SOAR: comparing functionalities for MSPs

Managed service providers (MSPs) must be prepared to defend their customers against advanced threats and, to do so, they need to keep track of different data sources by deploying solutions that are designed to improve their customers’ security posture through effective detection and proactive responses to potential incidents.

The 443 Podcast - Episode 248 - RepoJacking

On this week's podcast we discuss a recent analysis on the risks of GitHub RepoJacking. After that, we dive in to the Barracuda 0-day that China-based threat actors are actively exploiting as well as a novel command and control distribution method for a separate China-based APT. You can view more information on the CISA guidance as well as Blaze Lab's full blog post at the links below: The 443 Security Simplified is a weekly podcast that gets inside the minds of leading white-hat hackers and security researchers, covering the latest cybersecurity headlines and trends.

Ransomware detections on endpoints increase by 627%

Ransomware is still present and growing across the threat landscape, to the extent that some organizations now include the cost of a ransomware attack in their annual budgets. Data from our Internet Security Report - Q4 2022 reveals that ransomware detections on endpoints rose by an alarming 627% in 2022 compared to the previous year. While ransomware does not discriminate by industry type, the report clearly shows the manufacturing sector was the most affected during 2022.

Webinar: Next on Your Identity Security Plan - ITDR & Zero Trust Enablement

You’ve probably heard about XDR, but do you know ITDR? ITDR is short for identity threat detection and response, a new class of capabilities designed to protect identities. Zero Trust is an information security model that denies access to applications and data by default. ITDR and zero trust are two important models that organizations must get familiar with to embrace an identity-first security approach.

ChatGPT can create polymorphic malware, now what?

Despite the security controls that OpenAI has imposed on ChatGPT to try to make it a secure space capable of assisting users in a variety of tasks, cybercriminals have managed to exploit this technology for malicious purposes. Recent research has shown that this generative artificial intelligence is capable of creating a new branch of polymorphic malware with relative ease. The main risk lies in ChatGPT's versatility, which allows it to create code that could easily be used for malware.

How MSPs Can Overcome Common Zero Trust Obstacles

Zero trust is not a new cybersecurity concept, yet it seems everywhere lately. In case you’re unfamiliar with zero trust, it is defined as an approach to security that assumes no implicit trust between users, devices, or networks as a baseline, and once a user has been verified as legitimate, authorized, and trustworthy, access is allowed. Zero trust has been so effective as a cybersecurity strategy that the U.S.

5 Best Practices to Achieve a Trusted Wireless Environment

Complexity is the new normal, which applies equally to businesses’ networks and wireless environments. This is complicated further by the fact that cyberattacks that seek to exploit vulnerabilities in organizations' WLANs (Wireless Local Area Networks) are becoming increasingly sophisticated. On World Wi-Fi Day, we want to offer you security tips to create a safer wireless environment.

Tutorial: Get Started with Aliases and Exceptions Import

In this WatchGuard Support video, you'll learn how to import aliases and exceptions from a local-managed Firebox configuration file to a cloud-managed Firebox and Firebox templates in WatchGuard Cloud. Includes the import requirements, limitations and handling of duplicate entries.

The 443 Podcast - Episode 247 - A New Russian APT

On this week's episode we discuss the newly named threat actor Cadet Blizzard, including their typical tools, tactics and procedures. We also cover CISA's newest binding directive to federal agencies. Before that, we give an update on exploited MOVEit Transfer servers and the latest Bitcoin laundering technique.

10 Cybersecurity Tips for Business Travel & Remote Employees

Many modern organizations operate in a distributed model, with branch locations and endpoints deployed outside of a physical office. The concept of the network perimeter has expanded dramatically in recent years. It has been pushed by two significant post-pandemic milestones: the implementation of remote work and the return to business travel.

Cyber Threats and Opportunities: What Channel Partners Need to Know to Grow

The cybersecurity landscape is constantly evolving, and channel partners must stay ahead of the curve to successfully defend their customers and grow their businesses. The good news is, according to Canalys, the global cybersecurity market is expected to grow by 13% in 2023, providing channel partners with significant growth opportunities.

The 443 Podcast - Episode 246 - Minecraft Mod Malware

This week on the podcast we cover a supply chain attack of sorts against Minecraft gamers. After that, we cover a vulnerability in MOVEit Transfer that threat actors are exploiting in the wild to steal data and deploy ransomware. Finally, we wne with our review of the latest Verizon Data Breach Investigations Report (DBIR).

Prakash Panjwani Named "CEO of the Year" at 2023 Tech Ascension Awards

Today, we are proud to share the exciting news around WatchGuard CEO Prakash Panjwani’s big win at the annual Tech Ascension Leadership Awards – taking home the program’s prestigious “CEO of the Year” title for 2023! The Tech Ascension Awards program recognizes the top technology companies and leaders driving cutting-edge, innovative solutions to solve critical challenges in their respective markets.

WatchGuard Wins Two Fortress Cyber Security Awards

We’re thrilled to share that Business Intelligence Group has named WatchGuard as a winner in the Organizational Excellence category and recognized WatchGuard CEO Prakash Panjwani with a prestigious Leadership Award at this year’s Fortress Cyber Security Awards! This annual program recognizes the top companies, executives, and products from around the world leading the charge in preparing, defending and responding to growing cybersecurity threats.

Leveraging XDR to Build Stronger Managed Services

XDR (eXtended Detection and Response) is a leading integrated cybersecurity approach, which improves threat detection and response through integrating multiple data sources and cybersecurity tools and unifying multiple security products into a single operating system. XDR technology is growing increasingly popular. And it’s an opportunity for managed service providers (MSPs) to scale and grow their business.

WatchGuard Advanced EPDR Is Now Available in the Unified Security Platform

We are thrilled to announce the launch of WatchGuard Advanced EPDR as part of our Unified Security Platform® architecture. Now available in WatchGuard’s distribution channels, WatchGuard Advanced EPDR is tightly integrated within WatchGuard Cloud and ThreatSync, delivering valuable visibility and intelligence while fortifying cross-product detection and response.

The 443 Episode 245 - How Not to Update Software

This week on the podcast, we give a quick update on the latest Volt Typhoon activity before covering a newly for sale EDR bypass tool. After that, we discuss Gigabyte's decision to rootkit their own motherboards before ending with a new macOS vulnerability. The 443 Security Simplified is a weekly podcast that gets inside the minds of leading white-hat hackers and security researchers, covering the latest cybersecurity headlines and trends.