Latest News

Privileged Access for Modern Infrastructure: The Top Four Challenges

Nov 22, 2024 By Eddie Glenn In Teleport

As organizations have transitioned from legacy IT infrastructure to cloud-native, ephemeral modern infrastructure, the needs of how privileged access is handled have shifted, too. Modern infrastructure presents unique challenges that legacy Privileged Access Management (PAM) tools, originally architected for more static environments, weren’t designed to handle. In this post, we explore why characteristics of modern infrastructure require a modern approach to PAM.

Read Post

Teleport

Read more about Privileged Access for Modern Infrastructure: The Top Four Challenges

How Does Incognito Mode Work?

Nov 22, 2024 By Ashley D'Andrea In Keeper

Incognito mode, also known as private browsing mode, stops your web browser from saving your browsing history on your device. By turning on incognito mode, you can browse the internet with the assurance that closing incognito mode will erase your cookies and data. Incognito mode also logs you out of your online accounts, which is useful if you’re sharing a device with others and want to maintain your privacy.

Read Post

Keeper

Read more about How Does Incognito Mode Work?

CosmicSting: A Critical XXE Vulnerability in Adobe Commerce and Magento (CVE-2024-34102)

Nov 22, 2024 By Michael Haag In Splunk

The e-commerce world was recently shaken by the discovery of a vulnerability in Adobe Commerce and Magento, two of the most widely used e-commerce platforms. Dubbed "CosmicSting" and designated as CVE-2024-34102, this vulnerability exposes millions of online stores to potential remote code execution and data exfiltration risks.

Read Post

Splunk

Read more about CosmicSting: A Critical XXE Vulnerability in Adobe Commerce and Magento (CVE-2024-34102)

Leaving TLS 1.2 and moving to TLS 1.3

Nov 22, 2024 By John Gates In CalCom

Transport Layer Security (TLS) is a cryptographic protocol designed to provide secure communication between web browsers and servers. Many IP-based protocols such as HTTPS, SMTP, POP3, and FTP support TLS. Secure Sockets Layer (SSL), on the other hand, is a protocol used to establish an encrypted link between web browsers and servers. It uses symmetric cryptography to encrypt the data transmitted. Encryption keys are based on shared secret negotiation at the beginning of any communication session.

Read Post

CalCom

Read more about Leaving TLS 1.2 and moving to TLS 1.3

Non-Human Identity Security Strategy for Zero Trust Architecture

Nov 22, 2024 By Dwayne McDaniel In GitGuardian

Explore NIST-backed guidance on securing Non-Human Identities, reducing risks, and aligning with zero trust principles in cloud-native infrastructures.

Read Post

GitGuardian

Read more about Non-Human Identity Security Strategy for Zero Trust Architecture

Top 5 PDF Password Protectors to Keep Your Files Safe

Nov 22, 2024 By SecuritySenses In SecuritySenses

As we know, PDF is the most used file format in professional and educational settings. Even sensitive data, like bank statements, are usually shared in a PDF format. Before sending these sensitive files over to the recipient, it is essential to ensure their safety to protect confidential data. By applying a password, you can safeguard your files from data breaches. Therefore, it is a good idea to password-protect your PDF files using a trustworthy protection tool. Read this article till the end, as it features a list of renowned PDF Password Protectors to help you pick a suitable tool.

Read Post

SecuritySenses

Read more about Top 5 PDF Password Protectors to Keep Your Files Safe

5 Key Differences Between Proxies and Firewalls

Nov 22, 2024 By SecuritySenses In SecuritySenses

The world has never been this hyper-connected, but here's the bad side: if you are not dealing with one security threat, it's another, from malware and hacking to even lapses by your team. To enhance the protection of sensitive data, you might need more than one tool. Two of the most thrown-around words in this space are firewalls and proxies. To non-tech-savvy eyes, they mean the same thing. But the truth is that they are not!

Read Post

SecuritySenses

Read more about 5 Key Differences Between Proxies and Firewalls

Increasing Organic Traffic with User-Friendly Site Builders

Nov 22, 2024 By SecuritySenses In SecuritySenses

Creating an effective online presence is vital for businesses and individuals aiming to thrive in a competitive digital landscape. One of the most significant factors in this endeavour is driving organic traffic to your website. User-friendly site builders play a crucial role in achieving this goal by simplifying the web development process while offering tools that enhance visibility and engagement.

Read Post

SecuritySenses

Read more about Increasing Organic Traffic with User-Friendly Site Builders

Day One Tanium Converge 2024 Highlights: Gaining Confidence in Today's Security Landscape

Nov 21, 2024 By Tanium In Tanium

Learn how Tanium's innovations and automation capabilities are empowering customers to build confidence and resiliency.

Read Post

Tanium

Read more about Day One Tanium Converge 2024 Highlights: Gaining Confidence in Today's Security Landscape

The Lazarus Group: Unveiling the Motivation and Recent Activity of a Notorious APT Threat Actor

Nov 21, 2024 By Foresiet In Foresiet

Advanced Persistent Threat (APT) actors have become a significant concern for organizations worldwide, as they pose a substantial threat to sensitive information and critical infrastructure. One such APT actor is the Lazarus Group, also known as Hidden Cobra, which has been active since at least 2009. In this blog, we will delve into the motivation and recent activity of the Lazarus Group, highlighting their tactics, techniques, and procedures (TTPs) and the MITRE ATT&CK techniques they employ.

Read Post

Foresiet

Read more about The Lazarus Group: Unveiling the Motivation and Recent Activity of a Notorious APT Threat Actor

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Latest News

Privileged Access for Modern Infrastructure: The Top Four Challenges

How Does Incognito Mode Work?

CosmicSting: A Critical XXE Vulnerability in Adobe Commerce and Magento (CVE-2024-34102)

Leaving TLS 1.2 and moving to TLS 1.3

Non-Human Identity Security Strategy for Zero Trust Architecture

Top 5 PDF Password Protectors to Keep Your Files Safe

5 Key Differences Between Proxies and Firewalls

Increasing Organic Traffic with User-Friendly Site Builders

Day One Tanium Converge 2024 Highlights: Gaining Confidence in Today's Security Landscape

The Lazarus Group: Unveiling the Motivation and Recent Activity of a Notorious APT Threat Actor

Monthly Archive

Follow Us