President Joe Biden took the next step in the nation's ongoing effort to combat cyber threats by issuing the National Cybersecurity Strategy on March 2, which focuses on growing the public-private sector security partnership needed to protect critical infrastructure, dismantle threat groups, and increase resiliency.
Trustwave Government Solutions (TGS), a wholly-owned subsidiary of Trustwave Holdings, Inc., which supports the public sector with market-leading Managed Detection and Response (MDR) cybersecurity services, has achieved Palo Alto Networks Cortex eXtended Managed Detection and Response (XMDR) Specialization.
One year ago today, Russia launched a massive combined arms ground, air, and sea assault against Ukraine, including a large cyber component designed to sow confusion among Ukrainian authorities. At the first anniversary, the initial takeaway is the role played by cyber has not been as prominent as predicted for what has turned into the largest European land war since 1945. Russia and Ukraine are still actively using their cyber troops to conduct a variety of attacks against their foe.
As AISA’s Cyber Conference 2023 being held in Canberra March 20-22 approaches, I thought I would go over some of the hot topics that I expect delegates from Australian public sector organizations will be talking about at the event. And just a quick aside, Trustwave is a keen sponsor of the baristas at this year’s Australian Cyber Conference and we hope to share a hot beverage (of your choice) with you, so please stop by to discuss some of the following hot button topics.
The decision to buy a Security Information and Event Management (SIEM) product or outsource to a Managed Detection and Response (MDR) service depends on a number of factors, including the size of your organization, the complexity of your IT infrastructure, and your overall security needs.
We’ve now seen a number of different use cases for ChatGPT from marketing, sales, software development and others including from the security field. This platform continues to dominate most of the headlines and impress based on how it’s able to handle questions and topics from various backgrounds.
The key to maintaining a successful cyber defense is being proactive and not simply hoping your security technology stack manages to keep threat actors at bay. An organization needs not only a properly constructed and manned security structure, but one that is operated in conjunction with a partnerthat has a deep historical understanding of how threat operators work, matched with an elite team of researchers and analysts who can proactively find threats before they cause harm.
For the third year in a row, the leading channel publication CRN has named Trustwave to its Managed Service Provider (MSP) 500 list in the Security 100 category for 2023. CRN’s annual MSP 500 list identifies the leading service providers in North America whose forward-thinking approaches to managed services are changing the landscape of the IT channel, helping end users increase efficiency and simplify IT solutions while maximizing their return on investment.
Last October, Trustwave SpiderLabs blogged about the use and prevalence of HTML email attachments to deliver malware and phishing for credentials. The use of HTML smuggling has become more prevalent, and we have since seen various cybercriminal groups utilizing these techniques to distribute malware. HTML smuggling employs HTML5 attributes that can work offline by storing a binary in an immutable blob of data within JavaScript code.
An information disclosure vulnerability has been identified in Money Lover, a finance tracking application created by Finsify and available on Android, iOS, Microsoft Store, with a web interface. This vulnerability allows any authenticated user to view live transactions related to shared wallets.
