Protecting Nonprofits From Cyber Attacks
CISO Global's SOC Director Jess Dinsmore gives his perspective on protecting non-profits from cyber attacks.
Security | Threat Detection | Cyberattacks | DevSecOps | Compliance
The Latest Cybersecurity News & Insights From Around The World
Where Insider Threats Hide Out in a Segmented Network
When it comes to insider threats and cybersecurity in general, experts often discuss how to practice policies of containment, and use these to mitigate threats. One fundamental way to do this is through the process of network segmentation.
10 Ways CRM Can Help You Plan and Execute a Perfect Concert
Planning and executing a successful concert requires a lot of coordination and attention to detail. From booking the venue and artists to managing ticket sales and promotion, there are many moving parts that must work together seamlessly to create a memorable event.
Featured Post
Malware Targeting Password Managers
Not surprisingly, malware is starting to target password managers more often. What does it mean for password manager users? Should they still use password managers even though they represent a critical single-point-of-failure, where one compromise and every stored password is likely to be compromised? Yes, and here's why.
Jest async test: A developer's tutorial
Jest is one of the most commonly used test frameworks for JavaScript testing. With the rise of asynchronicity in modern web development, it’s important to know how to test your async code properly to ensure your application runs smoothly. Asynchronous testing has been a pain point for many developers starting out with Jest.
Integrating Fuzzing Into Automotive Security
Fuzz testing is a popular testing approach used to find bugs in C/C++ and embedded software, particularly memory corruptions. It has proven effective for identifying obscure bugs that are difficult to find through other testing methods. This testing approach is increasingly being adopted by automotive companies to comply with new security standards, save time, mitigate costs, and improve software quality. Let's have a look at how fuzzing is helping all of these automotive companies.
Mitigating USB Data Exfiltration with New Capabilities in Falcon Device Control
CrowdStrike is delivering powerful new file movement visibility features in CrowdStrike Falcon Device Control to help customers identify and mitigate the risk of data loss through USB devices.
Another Password Manager Breach: Practical Tips to Protect Stolen Credentials
In light of recent password manager breaches, our experts have provided tips on how to protect your organization from compromised credentials. In recent weeks, cybersecurity has once again been thrust into the spotlight with the news that both LastPass and Norton LifeLock, two popular password management services, have been targeted in cyberattacks, resulting in the compromise of customer password manager accounts.
Everything you need to know about the LummaC2 stealer: Leveraging IDA Python and Unicorn to deobfuscate Windows API Hashing
In this blog post, the KrakenLabs team will take a deep dive into a malware sample classified as LummaC2, an information stealer written in C language that has been sold in underground forums since December 2022. We assess LummaC2’s primary workflow, its different obfuscation techniques (like Windows API hashing and encoded strings) and how to overcome them to effectively analyze the malware with ease.
Five cybercriminal entities sell access to 2,300 corporate networks
It’s not possible to talk about a successful cyberattack without prior access to the target company's network. Initial access brokers (IABs) are the malicious actors that perform this first step, and they are making accessing enterprise networks easier than ever.