Technology

Cloud Threats Memo: More Details on Long-Lasting Campaigns Targeting Eastern Europe

May 19, 2023 By Paolo Passeri In Netskope

In a previous memo, I mentioned the discovery, made by researchers at Kaspersky, of an active campaign carried out by an advanced threat actor since 2021, targeting multiple organizations in the regions of Donetsk, Lugansk, and Crimea. One of the noteworthy aspects of this campaign was undoubtedly the usage of a new backdoor, called PowerMagic, characterized by the exploitation of the popular cloud storage services, Dropbox and OneDrive, as the command and control infrastructure.

Read Post

Netskope

Read more about Cloud Threats Memo: More Details on Long-Lasting Campaigns Targeting Eastern Europe

Learn about Corelight and Zeek with AI

May 19, 2023 By Corelight In Corelight

Want to know how to get a commanding view of all devices that log onto your network? Let’s ask ChatGPT! Watch as Corelight's James Pope leverages his AI assistant to explain the power of Zeek®—the open-source technology behind Corelight’s network evidence—and the detailed logs of network activity it produces, including protocols such as HTTP, DNS, and SSL. In the video he also shares how Zeek®’s open standard easily integrates with Suricata, SecurityOnion, Molok, Elk, CrowdStrike EDR logs, and more.

View Video

Corelight

Read more about Learn about Corelight and Zeek with AI

Will predictive AI revolutionize the SIEM industry?

May 18, 2023 By IT Security In ManageEngine

The cybersecurity industry is extremely dynamic and always finds a way to accommodate the latest and best technologies available into its systems. There are two major reasons: one, because cyberattacks are constantly evolving and organizations need to have the cutting edge technologies in place to detect sophisticated attacks; and two, because of the complexity of the network architecture of many organizations.

Read Post

ManageEngine

Read more about Will predictive AI revolutionize the SIEM industry?

What You Should Know About Open Source License Compliance for M&A Activity

May 18, 2023 By Sam Quakenbush In Mend

Companies are increasingly concerned about the security of applications built on open source components, especially when they’re involved in mergers and acquisitions. Just like copyright for works of art, each piece of open source software has a license that states legally binding conditions for its use.

Read Post

Mend

Read more about What You Should Know About Open Source License Compliance for M&A Activity

Netskope Demo: Keep Source Code out of AI Tools like ChatGPT

May 18, 2023 By Netskope In Netskope

Discover how Netskope's Intelligent SSE and DLP create a robust defense against potential leaks of proprietary code to AI tools like ChatGPT. This secure technology ensures your organization's precious source code remains safeguarded at all times.

View Video

Netskope

Read more about Netskope Demo: Keep Source Code out of AI Tools like ChatGPT

Stopping API attacks with Salt Security and AWS WAF

May 18, 2023 By Salt Security In Salt Security

Every company’s APIs are unique and so are its security gaps. Bad actors will poke and prod to learn your APIs and find mistakes in business logic they can exploit. Catching these attacks requires context and deep behavioral analysis over time. With its recent AWS WAF Ready designation, Salt Security makes it easier and faster for businesses to protect the APIs running in their AWS environments. Salt provides the visibility, intelligence, and context over time to identify and block attacks using tools you already rely on such as Amazon API Gateway, AWS WAF, and other inline enforcement points.

View Video

Salt Security

Read more about Stopping API attacks with Salt Security and AWS WAF

Announcing Cloudflare Secrets Store

May 18, 2023 By Dina Kozlov In Cloudflare

We’re excited to announce Secrets Store - Cloudflare’s new secrets management offering! A secrets store does exactly what the name implies - it stores secrets. Secrets are variables that are used by developers that contain sensitive information - information that only authorized users and systems should have access to.

Read Post

Cloudflare

Read more about Announcing Cloudflare Secrets Store

How to secure Generative AI applications

May 18, 2023 By Reid Tatoris In Cloudflare

I remember when the first iPhone was announced in 2007. This was NOT an iPhone as we think of one today. It had warts. A lot of warts. It couldn’t do MMS for example. But I remember the possibility it brought to mind. No product before had seemed like anything more than a product. The iPhone, or more the potential that the iPhone hinted at, had an actual impact on me. It changed my thinking about what could be.

Read Post

Cloudflare

Read more about How to secure Generative AI applications

Hype vs. Reality: Are Generative AI and Large Language Models the Next Cyberthreat?

May 18, 2023 By Torq In Torq

Generative AI and large language models (LLMs) have the potential to be used as tools for cybersecurity attacks, but they are not necessarily a new cybersecurity threat in themselves. Let’s have a look at the hype vs. the reality. The use of generative AI and LLMs in cybersecurity attacks is not new. Malicious actors have long used technology to create convincing scams and attacks.

Read Post

Torq

Read more about Hype vs. Reality: Are Generative AI and Large Language Models the Next Cyberthreat?

Six Key Security Risks of Generative AI

May 18, 2023 By Isaac Madan In Nightfall

Generative Artificial Intelligence (AI) has revolutionized various fields, from creative arts to content generation. However, as this technology becomes more prevalent, it raises important considerations regarding data privacy and confidentiality. In this blog post, we will delve into the implications of Generative AI on data privacy and explore the role of Data Leak Prevention (DLP) solutions in mitigating potential risks.

Read Post