Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

%term

Detecting Out-of-Bounds Memory Access, Which Caused The Crowdstike's Incident

The Crowdstrike incident is a recent example of out-of-bounds memory access in C/C++ causing a crash. CrowdStrike reported that problematic content in Channel File 291 triggered an out-of-bounds memory read, leading to a Windows operating system crash (BSOD). Another critical example with the exact root cause is the Heartbleed vulnerability, which affected the OpenSSL library. Remarkably, fuzz testing could identify this issue in less than 10 seconds. Watch the video to see fuzz testing in action.

Enhanced Compliance Monitoring with NIST 800-53 Integration

Illuminate 5.1.0 is now available, bringing substantial improvements to our compliance capabilities. This update represents a significant step forward, with NIST 800-53 as the cornerstone of our compliance framework. Let’s explore the key features and improvements implemented to support your organization’s security and compliance needs. Important Note: To run Illuminate 5.1.0, your environment must run Graylog 6.0 or higher.

How we created the first conversational AI cloud security analyst

In the rapidly evolving landscape of cybersecurity, the need for a robust and intelligent assistant capable of analyzing, summarizing, and reacting to events is paramount. This is why we designed Sysdig SageTM, our large language model (LLM)-based cloud security analyst, to be an expert in cloud detection and response (CDR). Sysdig Sage excels at summarizing complex events and providing clear explanations, which is crucial for identifying and promptly reacting to potential threats.

WatchGuard Wins in the CRN 2024 Annual Report Card (ARC) Awards

We’re pleased to announce that WatchGuard Technologies won two award categories in CRN’s 2024 Annual Report Card (ARC) program, from CRN, a brand of The Channel Company! These awards honor technology vendors who are committed to growing the IT channel through technology innovation and partner relationships.

Get Visibility Into the Cloud: Craig and Mike Secure the World, One Cloud at a Time

Mike Lossmann and Craig Johnson discuss enhancing cloud visibility for an upcoming audit, demonstrating how to ensure security in cloud environments. Highlights Craig explains the importance of knowing the cloud’s security posture. Forward Enterprise shows full multi-cloud visibility between cloud zones. Analysis reveals potential security gaps. Querying the entire cloud model identifies misconfigurations. Historical data allows for forensic analysis post-breach. Users can prepare for audits without last-minute scrambling.

CVE-2024-38856 -Apache OFBiz Pre-Auth RCE Vulnerability

A new zero-day vulnerability, CVE-2024-38856, has been discovered in the Apache OFBiz open-source enterprise resource planning (ERP) platform, presenting a critical threat to businesses worldwide. This pre-authentication remote code execution (RCE) flaw allows unauthenticated attackers to exploit weaknesses in OFBiz’s request handling, leading to unauthorized access and potentially damaging control over affected systems.

Zero to 80% Faster - How to Leverage AI to Accelerate Security Reviews

Stop wasting your team's time answering security questionnaires. It's time to supercharge the way you complete security reviews by leveraging AI to unlock unprecedented speed and accuracy. We'll explore proven strategies for fast tracking the way your team completes security questionnaires using advanced AI tools and automation. You'll learn best practices like maintaining a centralized knowledge base and leveraging a public-facing trust portal to get ahead of questions.

UN Approves Controversial Cybercrime Treaty Amidst Concerns Over Tech and Privacy

A newly drafted United Nations treaty aimed at combating global cybercrime has sparked significant debate due to its potential implications for technology companies, privacy rights, and digital freedoms. The UN Convention Against Cybercrime, which advanced from committee to the General Assembly on August 8, 2024, could require nations to enforce stringent laws against unauthorized access to information systems and data interception, raising alarms among privacy advocates and cybersecurity experts.