Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Latest News

FBI Warns of Cybercriminals Using Generative AI to Launch Phishing Attacks

The US Federal Bureau of Investigation (FBI) warns that threat actors are increasingly using generative AI to increase the persuasiveness of social engineering attacks. Criminals are using these tools to generate convincing text, images, and voice audio to impersonate individuals and companies. “Generative AI reduces the time and effort criminals must expend to deceive their targets,” the FBI says.

It's Typhoon Season: Attackers are deliberately evading EDR. What can you do about it?

Over the past year, several sophisticated cyber-espionage campaigns have grabbed the attention of our industry and challenged defenders and vendors alike with advanced tactics, techniques, and procedures (TTPs). One of the most visible campaigns is Volt Typhoon, named by the Microsoft threat intelligence team in May 2023 and attributed to Chinese state-sponsored threat actors.

The Rise of Phishing Attacks: How New Domain Extensions Are Fueling Cyber Crime

In recent years, the world of cybersecurity has witnessed a concerning trend: a significant increase in phishing attacks. A new study reveals that these attacks have surged by nearly 40% in the year ending August, 2024. What's particularly alarming is the role played by new generic top-level domains (gTLDs) in this spike. While gTLDs like.shop, .top, and.xyz make up only 11% of new domain registrations, they account for a staggering 37% of reported cybercrime domains.

Crypto trading journals: What are they, and how can they help you?

The trading journal is a very underrated tool in the crypto trading landscape, but the truth is that it can come in handy when navigating such a complex market. Relying on instinct is never enough when investing in cryptocurrencies, and every smart trader knows the importance of having a system in place that allows them to take opportunities when they arise and make proper decisions. A trading journal is an essential part of this system, allowing traders to keep a record of their performance and refine their strategies accordingly, as it captures everything from the trading patterns to the wins and the setbacks.

Cybersecurity Content Creation Guide

Every cybersecurity vendor today depends, to some extent, on content marketing to get leads across various channels. "Content" refers to blog posts, ebooks, whitepapers, case studies, explainer videos, LinkedIn posts, etc. Basically, any marketing asset that carries a brand's product message to buyers in a way that they (should) find engaging. Almost every B2B company uses content marketing, but cybersecurity companies spend considerable effort on content because.

Renewtech's Network Configurator: Secure, Custom, and Cost-Effective Networking

Renewtech's network configurator empowers businesses to build secure, tailored and cost-effective network solutions using refurbished equipment from trusted brands like Cisco and HPE. Combining high quality, seamless compatibility and eco-friendly practices, it's the ideal tool for modern IT infrastructure.

What is OAuth configuration, and how can it be implemented on mail servers using DDI Central?

ManageEngine DDI Central now facilitates Open Authorization (OAuth), which can be configured with your organization’s SMTP servers for implementing secure, reliable mail authentication for clients. OAuth provides credential-less authentication for accessing SMTP servers to send emails efficiently. It benefits users in a safe, secure approach to permitting third-party applications to access users’ SMTP servers without using their credentials.

Top tips: 4 ways to secure your operational technology infrastructure against security threats

Top tips is a weekly column where we highlight what’s trending in the tech world and list ways to explore these trends. This week, we explore four ways organizations can secure their OT environment. Operational technology (OT) has evolved from largely manual processes to digital, automated, and data-driven processes in recent years. As more industrial processes go digital, organizations in this sector now face a vastly expanded attack surface.