%term

Energy Under Siege: How the Industry is Fighting Against Cyber Attacks

Apr 14, 2025 By Kirsten Doyle In Tripwire

The energy sector has become a prime target for cyberattacks, with successful breaches posing severe risks to national security, economic stability, and public safety. Luckily, the industry is standing up and taking notice, with two-thirds of energy professionals (65%) now saying their leadership now sees cybersecurity as the greatest risk to their business.

Read Post

Tripwire

Read more about Energy Under Siege: How the Industry is Fighting Against Cyber Attacks

Why Attackers Are Targeting Kubernetes Right Now

Apr 11, 2025 By CrowdStrike In CrowdStrike

View Video

CrowdStrike

Read more about Why Attackers Are Targeting Kubernetes Right Now

Amazon EC2 Instance Metadata Targeted via Server-Side Request Forgery (SSRF)

Apr 11, 2025 By SignMyCode In SignMyCode

CVE Trends, Vulnerabilities of SSRF On March 25, 2024, the National Security Agency (NSA) and the Cybersecurity and Infrastructure Security Agency (CISA) issued a joint cybersecurity advisory about an increasing yet commonly overlooked web application vulnerability, Server-Side Request Forgery (SSRF).

Read Post

SignMyCode

Read more about Amazon EC2 Instance Metadata Targeted via Server-Side Request Forgery (SSRF)

United Nations Urges Global Action as Cyberattacks Threaten Healthcare Systems

Apr 10, 2025 By Trustwave In Trustwave

The threat facing healthcare organizations worldwide is being recognized at the highest level, with the United Nations calling for international cooperation to combat the issue. The international organization has asked its members to support fellow member nations by providing technical assistance and guidelines to bolster the resilience of health infrastructure against attack.

Read Post

Trustwave

Read more about United Nations Urges Global Action as Cyberattacks Threaten Healthcare Systems

Pixel-Perfect Trap: The Surge of SVG-Borne Phishing Attacks

Apr 10, 2025 By Bernard Bautista and Kevin Adriano In Trustwave

Ever thought an image file could be part of a cyber threat? The Trustwave SpiderLabs Email Security team has identified a major spike in SVG image-based attacks, where harmless-looking graphics are being used to hide dangerous links. This blog post analyzes the various techniques cybercriminals are using to cleverly weaponize these image files in phishing attacks and what your organization can do to prevent these pixel-perfect tricks.

Read Post

Trustwave

Read more about Pixel-Perfect Trap: The Surge of SVG-Borne Phishing Attacks

Gcore Super Transit Brings Advanced DDoS Protection and Acceleration for Superior Enterprise Security and Speed

Apr 9, 2025 By Gcore

Gcore, the global edge AI, cloud, network, and security solutions provider, has launched Super Transit, a cutting-edge DDoS protection and acceleration feature, designed to safeguard enterprise infrastructure while delivering lightning-fast connectivity.

Read Post

Read more about Gcore Super Transit Brings Advanced DDoS Protection and Acceleration for Superior Enterprise Security and Speed

Agents Under Attack: Threat Modeling Agentic AI

Apr 9, 2025 By Shaked Reiner In CyberArk

The term “Agentic AI” has recently gained significant attention. Agentic systems are set to fulfill the promise of Generative AI—revolutionizing our lives in unprecedented ways.

Read Post

CyberArk

Read more about Agents Under Attack: Threat Modeling Agentic AI

Data Weaponization: How Cyber Attacks Impact the Vulnerable

Apr 8, 2025 By Rubrik In Rubrik

Welcome to the Data Security Decoded podcast by Rubrik Zero Labs. In this episode, our host Caleb Tolin speaks with Pavlina Pavlova, a researcher and cybersecurity advocate focusing on data weaponization and its disproportionate impact on vulnerable populations. Pavlina defines data weaponization as using data to manipulate, deceive, coerce, or attack someone to inflict harm. Her research investigates why cyber attacks and their impacts often have gendered dimensions, with certain populations experiencing more severe consequences.

View Video

Rubrik

Read more about Data Weaponization: How Cyber Attacks Impact the Vulnerable

AI-powered attacks are getting more sophisticated.

Apr 8, 2025 By Cloudflare In Cloudflare

AI-powered attacks are getting more sophisticated. However, AI-powered defense is evolving even faster. At Cloudflare, AI is already detecting and stopping threats faster than human researchers ever could. How? Machine learning models analyze millions of attack patterns in real-time, identifying anomalies and blocking threats before they spread. AI detects novel attack patterns before they even make headlines AI reduces false positives, helping security teams focus on real risks AI learns from past incidents, adapting faster than traditional security tools.

View Video

Cloudflare

Read more about AI-powered attacks are getting more sophisticated.

Upgraded Phishing-as-a-Service Platform Drives a Wave of Smishing Attacks

Apr 7, 2025 By Stu Sjouwerman In KnowBe4

A phishing-as-a-service (PhaaS) platform dubbed ‘Lucid’ is driving a surge in SMS phishing (smishing) attacks, according to researchers at Prodaft. The platform is operated by Chinese cybercriminals who offer access to the service under a subscription model. A Lucid subscription allows crooks to easily craft sophisticated, targeted phishing campaigns.

Read Post