Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

The Simply Cyber Report: January 30, 2023

Jan 30, 2023 By LimaCharlie In LimaCharlie
Microsoft has started blocking the execution of XLL add-ins downloaded from the Internet. The hacking group DragonSpark is leveraging Golang source code interpretation to evade detection. Threat actors are turning to Sliver to replace more popular frameworks Cobalt Strike and Metasploit. Over 4,500 WordPress sites have been hacked and Emote malware makes a comeback.
View Video
WatchGuard

Data protection: stricter rules call for an advanced security posture

Jan 24, 2023 By Sam Manjarres In WatchGuard

Data privacy is still unfinished business for many companies. With data privacy laws expanding and tightening globally, compliance has become a complicated process that affects all areas of an organization. Gartner predicts that by 2024, 75% of the world's population will have their data covered by some privacy regulation.

Read Post

The 443 Episode 226 - Report Roundup

Jan 23, 2023 By WatchGuard In WatchGuard
This week on the podcast, we cover key findings from three individual reports published last week. In the first report we'll dive into the world of blockchain analysis looking for illicit transactions. In the second report, we'll cover the state of SMB security. The final report includes a discussion of overall financial crime involving stolen payment card information. The 443 Security Simplified is a weekly podcast that gets inside the minds of leading white-hat hackers and security researchers, covering the latest cybersecurity headlines and trends.
View Video
WatchGuard

Distributed and remote operations: key concepts for unified security

Jan 20, 2023 By The Editor In WatchGuard

The concept of the network perimeter has expanded dramatically in recent years. Many modern organizations operate in a distributed model, with branch locations and endpoints deployed outside of a physical office. But anything connecting to the corporate network is a potential vector for attackers, who can make their way into the network core (and potentially gain access to an organization’s “crown jewels”) by first compromising a branch office or an endpoint.

Read Post
WatchGuard

Watering hole attacks vs. advanced endpoint protection

Jan 18, 2023 By Manu Santamaría Delgado In WatchGuard

In a watering hole attack, threat actors usually have to follow a series of steps. First, they need to research the target and make sure they know the type of website the potential victim frequents. Then, they attempt to infect it with malicious code so that when the victim visits it, the website exploits a vulnerability in the browser or convinces them to download a file that compromises the user device.

Read Post
Torq

The Limitations of Endpoint Detection and Response (EDR)

Jan 18, 2023 By Torq In Torq
Every IT environment – whether it’s on-prem or in the cloud, and regardless of how it’s designed or what runs in it – is made up of endpoints. That’s why Endpoint Detection and Response, or EDR, has typically been one of the pillars of cybersecurity. EDR helps businesses monitor each of their endpoints for security risks so that they can detect problems before they escalate to other endpoints.
Read Post

Webinar: Top Security Threats Worldwide: Q3 2022 - 17 January 2023

Jan 18, 2023 By WatchGuard In WatchGuard
Join WatchGuard CSO Corey Nachreiner and Director of Security Operations Marc Laliberte as they discuss key findings from the WatchGuard Threat Lab’s 2022 Q3 Internet Security Report. They’ll cover the latest malware and network attack trends targeting small and midsized enterprises and defensive tips you can take back to your organization to stay ahead of modern threat actor tactics.
View Video

The 443 Episode 225 - The RCE Vulnerability That Wasn't

Jan 17, 2023 By WatchGuard In WatchGuard
This week on the podcast we cover a recently-disclosed vulnerability in the popular JavaScript library JsonWebToken. After that, we give an update to weaponizing ChatGPT, the currently free Artificial Intelligence chat bot that has made waves since it's release in November. We round out the episode with a wave farewell to Windows 7 and Windows 8.1 and what the end of extended support means for businesses.
View Video
CrowdStrike

Walking Through Walls: Four Common Endpoint Tools Used to Facilitate Covert C2

Jan 17, 2023 By Emile Smith and the Falcon OverWatch Elite Team In CrowdStrike

Adversaries continue to find new and innovative ways to penetrate an organization’s defenses. Defenders who focus on plugging these holes can find themselves exhausted and frustrated. Hunting for adversarial defense evasion for the purpose of data exfiltration and command-and-control (C2), however, remains a good strategy. Many adversaries leverage tooling to establish C2 or to enable successful data exfiltration, all while evading an organization’s defenses.

Read Post
WatchGuard

Wi-Fi routers and access points are the most vulnerable IT devices

Jan 11, 2023 By Kirk Jensen In WatchGuard

Today, the number and diversity of connected devices continue to grow in enterprises, no matter which sector they operate in. This has created a new challenge for organizations as they need to understand and manage the risks they are exposed to. We keep saying that the attack surface is expanding, and that's because it now spans IT, IoT, and OT for most enterprises, with the addition of IoMT in healthcare.

Read Post

Copyright © 2026 OpsMatters™. All rights reserved.