CTI Roundup: Xeon Sender Targets Cloud APIs and MoonPeak Malware Updates
Xeon Sender targets cloud APIs, Cisco Talos reveals UAT-5394 infrastructure, and attackers leverage public.env files to extort victims.
Security | Threat Detection | Cyberattacks | DevSecOps | Compliance
The Latest Cybersecurity News & Insights From Around The World
Latest News
Mastering API Compliance in a Regulated World
As we continue our Summer School blog series, let's focus on a vital aspect of modern application security: the relationship between API posture governance, API security, and the constantly changing regulatory compliance landscape. In today's interconnected world, where APIs are crucial for digital interactions, organizations are challenged with securing their APIs while complying with complex regulations designed to protect sensitive data and critical infrastructure.
Block Microsoft accounts : When to block and when not
The block Microsoft accounts security setting in Windows is designed to restrict or disable the use of Microsoft accounts on a device or network. This setting can be important for companies looking to have a higher security posture through the use of local accounts only. A Microsoft account is an account created through Microsoft that enables access to a variety of Microsoft services and products, all with a single set of credentials.
AI and LLM Data Security: Strategies for Balancing Innovation and Data Protection
Striking the right balance between innovation using Artificial Intelligence (AI) and Large Language Models (LLMs) and data protection is essential. In this blog, we’ll explore critical strategies for ensuring AI and LLM data security, highlighting some trade-offs.
How financial services companies discover, classify, and manage sensitive data with Datadog
As financial services companies, such as banks, hedge funds, and stock exchanges, move to the cloud, sensitive data often unintentionally moves with them. To help avoid costly breaches and address governance, risk, and compliance (GRC) requirements such as PCI-DSS, GDPR, and SOC 2, these organizations may need to identify where in the cloud sensitive data can leak and be able to redact it at scale.
Elevate Your Azure AD Security Before the Next Attack
As 98% of businesses are using some form of cloud computing, keeping track of who has access to what has become a major challenge, especially as cloud environments often span multiple platforms and locations.
With Digital Assets, CISOs Must Prepare for a Blockchain Security Evolution
The traditional financial industry is saddled with multiple pain points, and I predict that within 15 years, many financial and payment systems will be replaced by a wholesale shift to digital assets. Businesses want to achieve their goals by trading faster, conducting payments faster, cutting expenses, and doing it in a simpler and more secure way.
Network Vulnerabilities and Threats: A Cyber-Security Challenge
The digital world is under constant risk as cyber-attacks are becoming increasingly advanced and increasing at a staggering rate. While significant developments have been made to mitigate cyber risk, network security threats continue to evolve further to get unauthorized access and steal data from companies. According to Cloudwards Cybersecurity Statistics 2024, Cybersecurity intrusions increased by 613% from 2013 to 2023.
BlueVoyant Identifies Credential Harvesting Campaign Targeting the Manufacturing Sector
BlueVoyant’s Threat Fusion Cell (TFC) uncovered a focused campaign targeting the advanced manufacturing sector. This campaign aims to steal Microsoft credentials, by spoofing Microsoft’s login page, to phish for potentially compromising sensitive information.
Streamlining Legal Workflows with NotatePDF
In the fast-paced world of legal practice, managing cases, documents, and communication is a constant challenge. Legal professionals must juggle numerous tasks, from drafting and reviewing documents to coordinating with clients and colleagues. The sheer volume of information and the need for accuracy and timeliness often lead to inefficiencies, errors, and missed deadlines. These challenges are further compounded by the demand for secure handling of sensitive data and compliance with strict regulations.