%term

CrowdStrike Services Helps Organizations Prioritize Patching Vulnerabilities with CrowdStrike Falcon Spotlight

Dec 13, 2022 By Steven Alexander In CrowdStrike

When the CrowdStrike Services team conducts a proactive security engagement, such as a Cybersecurity Maturity Assessment or Tabletop Exercise, it often uses CrowdStrike Falcon® Spotlight to identify what vulnerabilities exist in the environment. Unfortunately, this can be a disheartening experience, as many organizations we see have millions, even tens of millions, of unpatched vulnerabilities. It’s typical to see at least a quarter of those listed with a CVSS rating of Critical.

Read Post

CrowdStrike

Read more about CrowdStrike Services Helps Organizations Prioritize Patching Vulnerabilities with CrowdStrike Falcon Spotlight

Introducing Third-Party Vulnerability Detection

Dec 13, 2022 By BitSight In BitSight

Learn how Bitsight Third-Party Vulnerability Detection empowers third-party risk professionals to find and remediate threats - including major security events - more quickly within their vendor portfolio. Identify exposure and mitigate risk more easily with critical insights into the impact on your organization’s third parties.

View Video

BitSight

Read more about Introducing Third-Party Vulnerability Detection

2023 Cybersecurity Predictions

Dec 13, 2022 By Outpost 24 In Outpost 24

In light of the numerous large-scale cyberattacks witnessed in the last year, 2023 promises to be an exciting time for cybersecurity. Outpost24 experts share their thoughts on what we can expect in the new year, and how to best prepare against new threats.

Read Post

Outpost 24

Read more about 2023 Cybersecurity Predictions

Azure Bicep security fundamentals

Dec 13, 2022 By Mark Johnson In Snyk

Azure Bicep is getting more popular by the day and is rapidly becoming the replacement for Azure Resource Manager (ARM) templates. In this post, I am going to go over some security fundamentals when using Bicep. If you are not familiar with Bicep then I recommend taking a look at the Microsoft Learn documentation to find out more.

Read Post

Snyk

Read more about Azure Bicep security fundamentals

AWS re:Invent 2022: How Neiman Marcus transitioned to developer-first security

Dec 12, 2022 By Megan Moore In Snyk

At this year’s AWS re:Invent conference, Snyk’s VP of Product Marketing, Ravi Maira, spoke with Omar Peerzada, Cyber Security Architect at Neiman Marcus, about how his team transitioned from older security practices to a developer-first security strategy. Watch the full talk now, or keep reading for the highlights.

Read Post

Snyk

Read more about AWS re:Invent 2022: How Neiman Marcus transitioned to developer-first security

SBOMs and the Hunt for Software Supply Chain Vulnerabilities

Dec 12, 2022 By Daniel Trivellato, VP Product & Engineering In Forescout

That’s an excerpt from the fact sheet accompanying the May 2021 Executive Order on Improving the Nation’s Cybersecurity (EO). It refers to one of seven ambitious measures in the EO: shoring up security of that notorious playground for hackers, the software supply chain. Knowing that organizations lack visibility into the components that comprise their connected assets, bad actors can have a field day exploiting vulnerabilities to penetrate networks and take control.

Read Post

Forescout

Read more about SBOMs and the Hunt for Software Supply Chain Vulnerabilities

CVE-2022-42475: Remote Code Execution vulnerability in Fortinet SSL VPN service

Dec 12, 2022 By Adrian Korn In Arctic Wolf

On the 12th of December 2022, Fortinet published an advisory regarding an actively exploited remote code execution vulnerability affecting FortiOS through the SSL VPN service. Fortinet has stated that they are aware of at least one instance where this vulnerability was successfully exploited in the wild, though other undocumented cases may exist. The threat actors leveraged the vulnerability to deploy malicious files on the filesystem of affected devices.

Read Post

Arctic Wolf

Read more about CVE-2022-42475: Remote Code Execution vulnerability in Fortinet SSL VPN service

CVE-2022-3236: Official Patch Out Now for Remote Code Execution Vulnerability in Sophos Firewall

Dec 11, 2022 By James Liolios In Arctic Wolf

On Friday, September 23rd, 2022, Sophos disclosed a critical code injection vulnerability impacting Sophos Firewall. This vulnerability, assigned CVE-2022-3236, affects Sophos Firewall versions v19.0 MR1 (19.0.1) and older and could lead to remote code execution. In order for a threat actor to exploit this vulnerability, WAN access would need to be enabled for the Webadmin and User Portal consoles.

Read Post

Arctic Wolf

Read more about CVE-2022-3236: Official Patch Out Now for Remote Code Execution Vulnerability in Sophos Firewall

Finding Abusable Active Directory Permissions with BloodHound

Dec 9, 2022 By Joe Dibley In Netwrix

BloodHound is a powerful tool that identifies vulnerabilities in Active Directory (AD). Cybercriminals abuse this tool to visualize chains of abusable Active Directory permissions that can enable them to gain elevated rights, including membership in the powerful Domain Admin group. This guide is designed to help penetration testers use BloodHound to identify these vulnerabilities first, so enterprises can thwart attacks.

Read Post

Netwrix

Read more about Finding Abusable Active Directory Permissions with BloodHound

Customer Office Hours: CI/CD Best Practices

Dec 9, 2022 By Snyk In Snyk

Learn tips and tricks on how to implement, troubleshoot and scale deployments. For example, should you scan in the CICD or in SCM? What implementation methods should you use - plugin, npm, binary…? We will cover this and more. Host: Sebastian Roth, Senior Solutions Engineer Seb brings his expertise as a Principal Software Engineer & Team Lead for over 17 years into the DevSecOps community, where he now focuses on process improvements and shares best-practices to improve security posture.

View Video