In our previous blog, The states of data, Part 2: Why visibility is key for protecting data at rest, we discussed the importance of discovering data; classifying it; assigning the right permissions; and getting rid of redundant, obsolete, or trivial data to protect data at rest. While doing all this can get you started, achieving data security takes more than that.

Dynamic Application Security Testing (DAST), sometimes referred to as “pentesting in a box”, tests running code for a variety of issues that can’t easily be found by analyzing code with static scanning tools. DAST tools are platform and language agnostic—as long as you have a website or API they can connect to, they’ll get the job done, and find real vulnerabilities in the same places an attacker would.

October is Cybersecurity Awareness Month (CSAM). It’s a crucial time to equip ourselves with the knowledge and tools to navigate the digital landscape safely. With remote work, virtual learning, and the rapid adoption of new technologies, cyber threats are at an all-time high. As cybersecurity professionals, we have a unique opportunity to spread awareness and share our expertise to help others stay secure online.

This report is the latest in a series that will delve into the deep research the Trustwave SpiderLabs Threat Intelligence team conducts daily on the major threat actor groups currently operating globally. The information gathered is part of a data repository that helps Trustwave SpiderLabs identify possible intrusions as it conducts threat hunts, vulnerability scans, and other offensive and defensive security tasks.

‍Security is no longer solely confined to the physical, dependent on bodily actions. With the advent of the internet, the mechanisms necessary for safeguarding assets and even lives have expanded into the cyber realm, where the risks can be even more complex. Indeed, a single cyber event has the power to render hospitals nonfunctional, halt mass transportation, block financial transactions, and cause billions of dollars worth of damages.

Unfortunately, it will often take some kind of disaster in the business world before a government takes action to prevent it from happening again. It’s only when significant data breaches happen that states implement compliance laws to avoid mishandling data; in this case, SOX compliance has a similar backstory. In the early 2000s, the collapse of corporate giants Enron, Tyco, and WorldCom exposed flaws in corporate accountability, leading to widespread fraud and massive investor losses.

Mitigating risk based on the threat landscape is a complicated yet essential part of being a CISO, which is why threat reports like the 2024 Elastic Global Threat Report are a huge help for me. In addition to providing an in-depth understanding of what’s happening, threat reports also offer a quick overview of what needs to be explained or communicated to the rest of the organization.

Trustwave's Threat Intelligence team has discovered a new malware dubbed Pronsis Loader, with its earliest known variant dating back to November 2023. This loader shares similarities with the D3F@ck Loader , which surfaced in January 2024. Pronsis Loader has been observed delivering different malware variants, including Lumma Stealer and Latrodectus as its primary payloads. Additionally, the team identified infrastructure linked to Lumma Stealer during the investigation.

Data privacy and security are critical concerns for businesses using Large Language Models (LLMs), especially when dealing with sensitive information like Personally Identifiable Information (PII) and Protected Health Information (PHI). Companies typically rely on data masking tools such as Microsoft’s Presidio to safeguard this data. However, these tools often struggle in scenarios involving LLMs/AI Agents.

Despite significant investments in cybersecurity technologies and services, many organizations remain vulnerable. One of the myriad reasons is the lack of alignment between cybersecurity strategies and specific risks each organization faces. This is where risk-aligned cybersecurity comes into play, ensuring that defenses are tailored to the unique challenges and threats an organization faces, ultimately building greater resilience.