%term

CVE-2023-36553: Critical OS Command Injection Vulnerability in FortiSIEM

Dec 11, 2023 By Andres Ramos In Arctic Wolf

On November 14, 2023, FortiGuard published an advisory disclosing that a critical command injection vulnerability (CVE-2023-36553) had been patched in the latest updates for FortiSIEM. The vulnerability was rated with a Common Vulnerability Scoring System (CVSS) score of 9.3, as it can be exploited remotely by an unauthenticated threat actor using crafted API requests to execute unauthorized commands. This vulnerability is caused by improper neutralization of special elements in FortiSIEM report server.

Read Post

Arctic Wolf

Read more about CVE-2023-36553: Critical OS Command Injection Vulnerability in FortiSIEM

Monitor highly regulated workloads with Datadog's FIPS-enabled Agent

Dec 11, 2023 By Geoffrey Carlisle In Datadog

Protecting sensitive data from the threat of exposure is a non-negotiable business imperative for organizations, especially those in highly regulated sectors like government and healthcare. To help organizations keep their data secure, the National Institute of Science and Technology (NIST) developed a set of requirements for the hardware and software components responsible for data encryption.

Read Post

Datadog

Read more about Monitor highly regulated workloads with Datadog's FIPS-enabled Agent

Exposed Server Headers and Cybersecurity Risk

Dec 11, 2023 By Caitlin Postal In UpGuard

Your web server conveys a variety of information to the client when a visitor opens your website. They can access specific policies you've set and sometimes identify what kind of software you use to run your system. Sometimes, that's okay. Other times, the information exposed in your server header can lead directly to a malicious cyber attack.

Read Post

UpGuard

Read more about Exposed Server Headers and Cybersecurity Risk

How Self-Learning AI Has Helped CARIAD Build An Automotive Software Powerhouse

Dec 11, 2023 By Code Intelligence In Code Intelligence

CARIAD has been building one unified software platform for all Volkswagen brands to provide them with reliable software and digital best practices. In recent years, CARIAD and the rest of the automotive software sector faced extensive industry regulation and an array of dangerous and costly vulnerabilities. By introducing feedback-based fuzzing, an advanced white-box testing method that uses self-learning AI to uncover deeply hidden bugs and security vulnerabilities, CARIAD was able to find and fix potentially dangerous issues early in the development process.

View Video

Code Intelligence

Read more about How Self-Learning AI Has Helped CARIAD Build An Automotive Software Powerhouse

Friday Flows Episode 16: Monitor Intercom with Nightfall

Dec 11, 2023 By Tines In Tines

Monitor Intercom (or any channel like Zendesk, Slack, email, etc.) to scan messages for data leak. This Tines story can help catch sensitive information and help you stay proactive by automatically creating a case for your team to manage.

View Video

Tines

Read more about Friday Flows Episode 16: Monitor Intercom with Nightfall

Falcon Identity Protection Unified Identity Protection for Hybrid Environments: Demo Drill Down

Dec 11, 2023 By CrowdStrike In CrowdStrike

Today’s adversaries exploit identity weaknesses across on-premise, Microsoft Entra ID (formally known as Azure AD), and hybrid environments. CrowdStrike Falcon Identity Protection delivers complete visibility and protection across your entire hybrid identity environment.

View Video

CrowdStrike

Security

Read more about Falcon Identity Protection Unified Identity Protection for Hybrid Environments: Demo Drill Down

How To Secure Your Phone

Dec 11, 2023 By Keeper In Keeper

Smartphones carry our entire lives, which is why it’s important to keep them secure from cybercriminals. By following these steps, you can protect your smartphone and personal data from common cyberthreats.

View Video

Keeper

Read more about How To Secure Your Phone

Decoding Essential 8 Compliance: Tanium's Unique path to Success

Dec 11, 2023 By Tanium In Tanium

From Tanium's Australian bureau, we dive into the Essential 8 baseline mitigation strategies and reveal how Tanium's unique architecture goes beyond the traditional approach of other vendors and enables organisations to overcome key challenges to help them successfully achieve automated continuous compliance.

Read Post

Tanium

Read more about Decoding Essential 8 Compliance: Tanium's Unique path to Success

Identity Threat Hunting: How CrowdStrike Counter Adversary Operations Is Leading the Charge

Dec 11, 2023 By Thuy Nguyen In CrowdStrike

It’s 10:30 p.m. and you’re heading to bed. Unfortunately, a threat actor has your organization in their crosshairs. While you’re brushing your teeth, they’re crafting a social engineering email to pilfer your employees’ credentials. While you’re putting on your pajamas, they’re finding a path to log in. While you’re asleep, is your organization protected?

Read Post

CrowdStrike

Read more about Identity Threat Hunting: How CrowdStrike Counter Adversary Operations Is Leading the Charge

How To Know if Your Smart TV Was Hacked and What To Do

Dec 11, 2023 By Tim Tran In Keeper

You can tell your smart TV has been hacked if you notice unusual activity on your smart TV, strange popup windows, changed privacy and security settings, slow performance and unauthorized access to your accounts. Surprisingly, smart TVs can get hacked just like any other Internet of Things (IoT) device that connects to the internet. Cybercriminals can hack your smart TV to spy on you or infect other devices on the same network. You need to secure your smart TV to protect it from hackers.

Read Post

Keeper

Read more about How To Know if Your Smart TV Was Hacked and What To Do

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

CVE-2023-36553: Critical OS Command Injection Vulnerability in FortiSIEM

Monitor highly regulated workloads with Datadog's FIPS-enabled Agent

Exposed Server Headers and Cybersecurity Risk

How Self-Learning AI Has Helped CARIAD Build An Automotive Software Powerhouse

Friday Flows Episode 16: Monitor Intercom with Nightfall

Falcon Identity Protection Unified Identity Protection for Hybrid Environments: Demo Drill Down

How To Secure Your Phone

Decoding Essential 8 Compliance: Tanium's Unique path to Success

Identity Threat Hunting: How CrowdStrike Counter Adversary Operations Is Leading the Charge

How To Know if Your Smart TV Was Hacked and What To Do

Monthly Archive

Follow Us