Vulnerability

AI vs. Hackers: How Artificial Intelligence is Changing the Game in Cybersecurity

Jun 16, 2023 By SecuritySenses In SecuritySenses

Artificial Intelligence (AI) has been used in every field today and become more and more prevalent. AI analyzes and trains large amounts of data. Furthermore, AI creates data patterns and makes correlations between them. The important thing about creating data patterns is that AI can use these data patterns and correlations for future cases.

Read Post

SecuritySenses

Read more about AI vs. Hackers: How Artificial Intelligence is Changing the Game in Cybersecurity

OWASP Machine Learning Top 10 And All About It

Jun 16, 2023 By Nivedita James In Astra

Applications of machine learning have grown exponentially over the past few years and with it, the possibilities of malicious attacks targeting it through any vulnerabilities present.

Read Post

Astra

Read more about OWASP Machine Learning Top 10 And All About It

The SecurityManager is getting removed in Java: What that means for you

Jun 15, 2023 By Mdu Sibisi In Snyk

The Java Development Kit (JDK) library's java.security package is one of the most important packages, yet despite consistent updates, it remains vastly underutilized. In light of the increased emphasis on cybersecurity frameworks, including zero trust, it's imperative for Java developers to become familiar with Java SE's security libraries. As with any other field in information technology, cybersecurity has a capricious nature. After all, it has to keep up with the latest trends in cybercrime.

Read Post

Snyk

Read more about The SecurityManager is getting removed in Java: What that means for you

Vulnerabilities: The Gateway to Cloud Breaches

Jun 15, 2023 By Sysdig In Sysdig

Things move fast in the cloud and cyber attackers are always on the lookout for vulnerabilities that they can exploit to gain access. In this short video, see the challenges faced by security teams in managing the ever growing list of vulnerabilities. Runtime insights provides the intelligence required to shift left - find and prevent vulnerabilities earlier, and shield right - protect what’s running in production.

View Video

Sysdig

Read more about Vulnerabilities: The Gateway to Cloud Breaches

A Guide to Handling the MOVEit Attack

Jun 15, 2023 By Anirban Banerjee In Riscosity

Last week, a vulnerability in the popular MOVEit managed file transfer service was exploited by the CL0P ransomware gang to execute data breaches – an increasingly common cybersecurity attack technique where popular software is exploited to target, by extension, their users. Victims of this hack include British Airways, Boots, BBC, and multiple US government agencies.

Read Post

Riscosity

Read more about A Guide to Handling the MOVEit Attack

ICS attack classifications: differentiating between Cyberwarfare, Cyberterrorism, & Hacktivism

Jun 15, 2023 By Beatriz Pimenta Klein In Outpost 24

Every news article about a threat group or attack floods the reader with classifications: nation-state groups, hacktivists, cyberterrorists, etc. But how can we define who is what? How can we differentiate between said categories? How should we deal with potential classification overlaps? Especially in the ever-evolving cyberwarfare realm, how can we approach these closely rooted phenomena?

Read Post

Outpost 24

Read more about ICS attack classifications: differentiating between Cyberwarfare, Cyberterrorism, & Hacktivism

OWASP Explained: Today's OWASP Top 10

Jun 15, 2023 By Kayly Lange In Splunk

Over the past few years, cyberattacks have escalated to unprecedented heights: Organizations and users need help understanding and navigating these changing risks to fight against the rising tide of cybercrimes. Thankfully, that is exactly what The OWASP Foundation aims to do.

Read Post

Splunk

Read more about OWASP Explained: Today's OWASP Top 10

What you need to know about the new 2023 OWASP API Security Top 10

Jun 15, 2023 By Salt Security In Salt Security

The 2023 OWASP API Security Top 10 list compiles and explains the most recent and pressing security threats facing today’s complex API ecosystem. As part of the committee that defined this industry-framing list, Salt gives you an insider view into the categories and how those embarking on their API security journey can most effectively address the critical vulnerabilities raised.

View Video

Salt Security

Read more about What you need to know about the new 2023 OWASP API Security Top 10

Continuous scanning in your production environment is more important than ever

Jun 15, 2023 By Vishrut Iyengar In Synopsys

Whether external or internal-facing, your business undoubtedly runs on web applications… which makes continuous scanning your ally. Most likely, your business runs on web applications. Whether they’re external-facing corporate websites with customer portals and shopping carts, internal-facing SSO login pages, HR portals, or team sites, they run on web apps.

Read Post

Synopsys

Read more about Continuous scanning in your production environment is more important than ever

CVE-2023-34362 - Zero-Day Vulnerability Discovered in MOVEit Transfer is Exploited in the Wild by Cl0p Ransomeware - Here's What you Need to Know

Jun 14, 2023 By Salt Labs In Salt Security

On May 29, 2023, a critical security vulnerability, identified as CVE-2023-34362, was published, leaving users of MOVEit Transfer software at high risk. According to Progress, organizations have reported possible exploitation in the wild. Therefore it’s crucial that any business using MOVEit Transfer to take immediate action, especially since all versions of this popular file transfer software are affected by this vulnerability.

Read Post