Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

While virtual private networks (VPNs) have been the go-to solution for remote access for decades, the surge in remote work during the pandemic has highlighted the cracks in its armor. Granting unrestricted access to everything stored within a corporate network can quickly become a security nightmare, especially as remote workers continue to rely on an increasing number of devices and access points.

Organizations of all sizes need to be proactive in identifying and mitigating vulnerabilities in their networks. To help organizations better understand the value and process of a vulnerability scan, Trustwave’s Philip Pieterse, Managing Consultant for the Americas division of SpiderLabs and Dhervesh Singh, senior Security Consultant with SpiderLabs conducted a webinar exploring key offensive security testing methodologies: vulnerability scanning, penetration testing, and purple teaming.

In today's digital age, where interconnectivity is the norm, routers act as custodians of business information. These devices, which can sometimes be undervalued, control data traffic between our devices and the global network. However, recent events have highlighted vulnerabilities that may affect a large number of routers, raising concerns about the protection of sensitive information handled by enterprises.

On May 6th, 2024, researchers from the Leviathan Security Group published an article detailing a technique to bypass most VPN applications, assigned as CVE-2024-3661 with a High CVSS score of 7.6. Researchers have labeled this technique ‘decloaking’ as while the VPN tunnel remains connected, it allows attackers to trick many VPN clients into sending traffic via a side channel and not through the encrypted tunnel.

Home is where the Wi-Fi is, and where your network can be the target of network attacks. Although many of us know the importance of creating strong passwords to protect our email, social media, online banking, etc., few people apply the same practice to their Wi-Fi passwords. Using the default password provided by your Internet Service Provider (ISP) might seem convenient, but it has risks.

In a world with frequent technological changes, maintaining the trustworthiness and protection of your data and systems should be of paramount importance. With technology constantly evolving for the better, dangers and susceptibility could also make your online security more extraordinary. This is where the issues of network security and application security appear, which may be referred to as two complementary subtopics.