Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

CyberArk

cyberark

EP 46 - Behind the Data Breach: Dissecting Cozy Bear's Microsoft Attack

Feb 15, 2024 By CyberArk In CyberArk
Andy Thompson, CyberArk Labs Offensive Security Research Evangelist returns to Trust Issues for a deep dive into the recent APT29 breach of Microsoft. In conversation with host David Puner, Thompson explores the intricate details of the January 2024 attack, dissecting the tactics employed by the APT29 threat actor, also known as Cozy Bear, Cozy Car, The Dukes – or, as Microsoft refers to the group: Midnight Blizzard.
Read Post
cyberark

A Deep Dive into Penetration Testing of macOS Applications (Part 3)

Feb 13, 2024 By Julia Minin and Daniel Rabinovich In CyberArk
This is the final installment of the blog series “A Deep Dive into Penetration Testing of macOS Applications.” Previously, we discussed the structure of macOS applications and their analysis techniques. Now, we will focus on client-side attacks in macOS applications. In penetration testing, the goal is to identify vulnerabilities in the app. To do that effectively, it’s important to understand how these attacks work. So, let’s dive in and learn more!
Read Post
cyberark

APT29's Attack on Microsoft: Tracking Cozy Bear's Footprints

Feb 8, 2024 By Andy Thompson In CyberArk
A new and concerning chapter has unfolded in these troubled times of geopolitical chaos. The Cozy Bear threat actor has caused significant breaches targeting Microsoft and HPE, and more are likely to come. These recent events have sent shockwaves throughout the tech community, and for good reason. As we continue to uncover the fallout from these breaches, it has become apparent that the magnitude of the incident is more significant than we first realized.
Read Post

Securing Database Access: DPA Zero Standing Privilege Approach with Native pgAdmin Utility

Feb 7, 2024 By CyberArk In CyberArk
In this video, we'll guide you through the process of utilising CyberArk DPA's capabilities to seamlessly connect to a Postgres database using the PGadmin client, leveraging the secure foundation of JIT access approach for enhanced security and efficiency.
View Video
cyberark

Redefining PAM to Secure OT and IoT Devices

Feb 6, 2024 By Ryne Laster In CyberArk
Left to their own devices, your organization’s devices can be a significant source of risk. Consider operational technology (OT), which is crucial for organizations but is not engineered and operated with a security-first mindset. Often, OT systems are beyond the purview of CISOs and are focused on meeting key objectives for system uptime and efficiency – leaving them vulnerable.
Read Post
cyberark

EP 45 - OT Security's Digital Makeover

Feb 6, 2024 By CyberArk In CyberArk
In this episode of Trust Issues, the conversation revolves around the challenges and transformations in operational technology (OT) security. Guest Mike Holcomb, the Fellow of Cybersecurity and the ICS/OT Cybersecurity Lead at Fluor shares insights with host David Puner on securing legacy systems, the impact of generative AI – and the evolving threat landscape.
Read Post

Securing Database Access: DPA Zero Standing Privilege Approach with Native HeidiSQL Utility

Feb 5, 2024 By CyberArk In CyberArk
In this video, we'll guide you through the process of utilizing CyberArk DPA's capabilities to seamlessly connect to a Postgres database using the HeidiSQL client, leveraging the secure foundation of JIT access approach for enhanced security and efficiency.
View Video

CyberArk Endpoint Privilege Manager & ServiceNow Integration

Feb 5, 2024 By CyberArk In CyberArk
In this video, we delve into the seamless integration of CyberArk Endpoint Privilege Manager and ServiceNow IT Service Management. Discover how this integration streamlines and automates end user privilege elevation requests by leveraging existing ServiceNow workflows. By enhancing security measures and operational efficiency, this collaboration between CyberArk and ServiceNow marks a significant advancement in managing and securing privileged access. Watch now to learn more about this powerful integration.
View Video

Securing Database Access: DPA Vaulted Account Approach with Native PGadmin Utility

Feb 3, 2024 By CyberArk In CyberArk
In this video, we'll guide you through the process of utilising CyberArk DPA's capabilities to seamlessly connect to a Postgres database using the PGadmin client, leveraging the secure foundation of Vaulted Accounts for enhanced security and efficiency.
View Video

Securing Database Access: DPA Vaulted Account Approach with Native HeidiSQL Utility

Feb 2, 2024 By CyberArk In CyberArk
In this video, we'll guide you through the process of utilising CyberArk DPA's capabilities to seamlessly connect to a Postgres database using the HeidiSQL client, leveraging the secure foundation of Vaulted Accounts for enhanced security and efficiency.
View Video

Copyright © 2024 OpsMatters™. All rights reserved.