Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

There’s no way around it: vulnerability management is complex. As organizations become more reliant on software and applications, the sheer volume of known vulnerabilities has become more difficult to track, prioritize, and remediate. Adversaries have also become increasingly reliant on exploiting vulnerabilities in order to compromise organizations.

Unfortunately, once your information has been put on the dark web, you cannot remove it. Despite this, you can still protect your personal information and identity by changing your passwords, enabling Multi-Factor Authentication (MFA) and monitoring your online accounts for suspicious activity. Continue reading to learn how to tell if your information is on the dark web and what you can do to protect yourself if it is.

The rise of hybrid and remote work has created unprecedented opportunities for forward-thinking organizations and their employees. At the same time, it has also created unprecedented opportunities for threat actors. The ability to access sensitive files from almost any machine, while convenient, can be a profound security risk. That’s why it’s worth considering a few real-world ZTNA use cases.

Containerization is now an important tool for businesses that want to make their apps scalable and efficient. A lot of people use Kubernetes because it can easily manage containers in many different environments. It is the best open-source platform for handling containerized workloads and services. But Kubernetes systems can be hard to manage and keep an eye on because they are spread out and have changing workloads.

Starting on Oct. 15, 2024, Microsoft Entra ID, Microsoft Intune, and other Microsoft Azure applications will require users to sign in with Microsoft Entra MFA. With increasing threats of account takeovers and large-scale phishing attacks targeting Entra ID users, this looks to be a step in the right direction.

XWorm is a relatively new versatile tool that was discovered in 2022. It enables attackers to carry out a variety of functions, which include accessing sensitive information, gaining remote access, and deploying additional malware. The multifaceted nature of XWorm is appealing to threat actors, as evidenced by its alleged use earlier this year by threat actors such as NullBulge and TA558. Through Netskope Threat Labs hunting efforts, we uncovered XWorm’s latest version in the wild.

In today’s fast-paced digital landscape, IT departments face unprecedented challenges. From managing increasingly fragmented infrastructures to ensuring robust security, the demands on IT teams have never been higher. Secure Access Service Edge (SASE) represents a groundbreaking approach to addressing these challenges by converging networking and security into a unified, cloud-native platform. But what makes a true SASE platform so transformative?

When it comes to security, organizations often consider themselves well-covered. But in today’s landscape, where cybersecurity threats evolve at breakneck speed, even the most well-prepared teams cannot afford to have testing gaps. The reality is that if your primary strategy for removing security testing gaps is tightening scanning policies or expanding penetration test scope, you are trying to patch a dam with bubble gum. Is your attack surface covered?

CVE-2024-28987 is a critical (CVSS v3 score: 9.1) hardcoded credential vulnerability in the SolarWinds Web Help Desk (WHD) software. If exploited, this Java deserialization remote code execution (RCE) vulnerability allows attackers remote unauthenticated access to create, read, update and delete data on specific WHD endpoints.

We're excited to share new updates and enhancements for September, including: For more information on these updates and others, please read the complete list below and follow the links for more detailed articles.