%term

What is Classiscam Scam-as-a-Service?

Nov 6, 2023 By Katrina Thompson In Tripwire

"The 'Classiscam' scam-as-a-service operation has broadened its reach worldwide, targeting many more brands, countries, and industries, causing more significant financial damage than before,” touts Bleeping Computer. So just what is it?

Read Post

Tripwire

Read more about What is Classiscam Scam-as-a-Service?

What We Learned From "The Cyber-Resilient CEO" Report

Nov 6, 2023 By Stefanie Shank In Tripwire

In today's digital landscape, cybersecurity is not just a technical concern; it's a strategic imperative. As we delve into the insights from a recent report from Accenture titled "The Cyber-Resilient CEO," we'll uncover CEOs' critical role in safeguarding their organizations against cyber threats. Discover how a select group of leaders navigates the complex terrain of cyber vulnerabilities, making cybersecurity a cornerstone of business resilience.

Read Post

Tripwire

Read more about What We Learned From "The Cyber-Resilient CEO" Report

API World 2023: Bringing together API, AI, and Secrets security

Nov 6, 2023 By Dwayne McDaniel In GitGuardian

API World 2023 was all about sharing insights on best practices, accounting for all your assets, and the importance of AI and API cybersecurity in an API-driven world.

Read Post

GitGuardian

Read more about API World 2023: Bringing together API, AI, and Secrets security

Challenges with Cybersecurity Asset Identification and Management

Nov 6, 2023 By Jeff Darrington In Graylog

Anyone who’s ever misplaced their wallet knows that horrible moment where their stomach drops, the beads of perspiration begin to form on their forehead, and they start mulling over worst-case scenarios. In that worst case scenario, someone used the cash and cards in the wallet to go on a personal spending spree. In a company’s IT environment, a missing device or shadow IT represents that missing wallet.

Read Post

Graylog

Read more about Challenges with Cybersecurity Asset Identification and Management

Security vs. Development: A game of priorities

Nov 6, 2023 By Andrew MacKenzie In Snyk

In today's dynamic tech ecosystem, the need to manage AppSec programs at scale is paramount. As codebases expand and threats become more sophisticated, the emphasis is transitioning from addressing singular vulnerabilities to building cohesive security postures throughout all development teams.

Read Post

Snyk

Read more about Security vs. Development: A game of priorities

The 443 Podcast - Episode 267 - The White House Tackles AI

Nov 6, 2023 By WatchGuard In WatchGuard

This week on the podcast we cover an Executive Order from the US White House on the topic of Artificial Intelligence. After that, we discuss the latest CISO that has found themselves in hot water with the law. We then cover an update to the Common Vulnerability Scoring System and end with a researcher claiming the end of encryption as we know it. The 443 Security Simplified is a weekly podcast that gets inside the minds of leading white-hat hackers and security researchers, covering the latest cybersecurity headlines and trends.

View Video

WatchGuard

Read more about The 443 Podcast - Episode 267 - The White House Tackles AI

Untangle JavaScript Dependency Secrets #javascript #security #cybersecurity

Nov 6, 2023 By Snyk In Snyk

In an ecosystem with an increasing number of dependencies, maintainers and supply chain attacks, discover an open source tool designed to analyze in depth the dependencies of a given remote package or local manifest. Not knowing what’s in the node_modules directory is a bad dream from the past. Dive in with me to find out the secrets that your dependencies hide from you. Snyk helps software-driven businesses develop fast and stay secure. Continuously find and fix vulnerabilities for npm, Maven, NuGet, RubyGems, PyPI and more.

View Video

Snyk

Read more about Untangle JavaScript Dependency Secrets #javascript #security #cybersecurity

Potential Data Exposure in ServiceNow: Challenges for Citizen Developers and Security Teams

Nov 6, 2023 By Andrew Silberman In Zenity

In a rapidly evolving digital landscape, data security has become a paramount concern within the AppSec community As organizations embrace digital transformation and the shift towards cloud-based solutions, the onus is on them to protect sensitive data. However, the recent ServiceNow data exposure highlights an alarming concern: what happens when developers build apps and automations with risky default settings?

Read Post

Zenity

Read more about Potential Data Exposure in ServiceNow: Challenges for Citizen Developers and Security Teams

7 Examples of SSRF and How to Protect Yourself from It

Nov 6, 2023 By Eyal Katz In Spectral

It’s unsettling to think that our systems can betray us. With SSRF attacks, harmless-looking web requests turn into weapons for cybercriminals. They can exploit vulnerabilities from within our networks, and these attacks often slip under the radar, quietly compromising data, breaching security, and potentially leading to catastrophic consequences. SSRF attacks have hit over 100,000 businesses globally since the end of 2022, and this number will rise due to the increasing use of web applications.

Read Post

Spectral

Read more about 7 Examples of SSRF and How to Protect Yourself from It

Applying an intelligence-based approach to Cybersecurity; SIEM and dark web monitoring

Nov 6, 2023 By Chris Mark In AT&T Cybersecurity

“History repeatedly has demonstrated that inferior forces can win when leaders are armed with accurate intelligence.” – Central Intelligence Agency; Intelligence in War In the ever-changing landscape of global cybersecurity, the boundaries between traditional military intelligence and cybersecurity are increasingly blurred. At the heart of this convergence lies the science of intelligence analysis—a process fundamental to both realms.

Read Post

AT&T Cybersecurity

Read more about Applying an intelligence-based approach to Cybersecurity; SIEM and dark web monitoring

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

What is Classiscam Scam-as-a-Service?

What We Learned From "The Cyber-Resilient CEO" Report

API World 2023: Bringing together API, AI, and Secrets security

Challenges with Cybersecurity Asset Identification and Management

Security vs. Development: A game of priorities

The 443 Podcast - Episode 267 - The White House Tackles AI

Untangle JavaScript Dependency Secrets #javascript #security #cybersecurity

Potential Data Exposure in ServiceNow: Challenges for Citizen Developers and Security Teams

7 Examples of SSRF and How to Protect Yourself from It

Applying an intelligence-based approach to Cybersecurity; SIEM and dark web monitoring

Monthly Archive

Follow Us