A recent report from Duke University's Sanford School of Public Policy has shed light on a concerning issue - data brokers are selling vast amounts of highly sensitive information about American military service members. This includes private data about active-duty personnel, veterans, and their families, encompassing sensitive health and financial details. Shockingly, these brokers even offer bulk data for individuals within geofenced military facilities like Fort Bragg and Quantico.

The Sysdig Threat Research Team (TRT) published their latest Cloud-Native Security & Usage Report for 2024. As always, the research team managed to shed additional light on critical vulnerabilities inherent in current container security practices.

Netskope Threat Labs publishes a monthly summary blog post of the top threats we are tracking on the Netskope platform. This post aims to provide strategic, actionable intelligence on active threats against enterprise users worldwide.

As AI continues to reshape how code is written and managed, the emphasis on vigilant, security-conscious development practices becomes increasingly crucial. SAST stands as a critical tool in ensuring that the efficiencies gained through AI do not come at the cost of security and reliability.

System admins often need to add computers to an Active Directory (AD) domain. This article details the four methods that Microsoft provides to add a computer object. It also explains how to modify a computer’s attributes, as well as how to move, delete or reset a computer.

Virtual private network (VPN) is extremely valuable technology, especially for organizations with a remote or hybrid workforce. VPN provides users with a secure and encrypted connection so they can access the corporate network over the internet — while keeping your confidential data and sensitive systems safe from prying eyes. VPN can also hide your IP address so that you can visit websites that are not normally accessible from your location.

Organizations need a Privileged Access Management (PAM) solution to protect their privileged accounts from misuse and compromise. However, not all PAM solutions are created the same. Traditional on-premises PAM platforms can lack the features needed to provide a dynamic and secure solution. The key features to look for in a modern PAM solution include zero-trust security, cloud-based infrastructure, integration with native tools and easy deployment.

Numerous state-sponsored threat actors frequently launched spear phishing attacks against European Union entities last year, according to a new report from the EU’s Emergency Response Team (CERT-EU). “In 2023, spear phishing remained the predominant initial access method for state-sponsored and cybercrime groups seeking to infiltrate target networks,” the report says.

New data on how organizations are able to respond to ransomware attacks also shows that paying a ransom is highly likely, despite having a policy of “Do Not Pay.” New research from security vendor Cohesity says organizations are overconfident in their ability to recover from a ransomware attack. According to the data: And even if you do have an outstanding recovery plan, when’s the last time you tested it?

The Internet is experiencing a new wave of virtual experience, named Metaverse. As the internet grows, users are getting more interested in immersive experiences in terms of gaming, shopping, and buying virtual assets. The Metaverse lets millions of people build new interactions and digitally recreate ones that are more like the real world. According to recent statistics, the Metaverse market is expected to reach $74.4 billion by 2024.