Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

In today’s hospitality industry, the role of hotel management has expanded far beyond providing safe and clean accommodations. The focus now lies on delivering enhanced service quality through robust amenities, such as personalized guest experiences, digital concierge services, in-room entertainment systems, seamless mobile check-ins and check-outs, and high-speed Wi-Fi.

A recent study by ISC2 reveals that 73% of Chief Information Security Officers (CISOs) in the US reported experiencing burnout over the past year. According to this Voice of the CISO report 61% of CISOs said they face excessive expectations from their employers. Additionally, owing to the cybersecurity skills gap, many CISOs must continue to defend their companies with incredibly stretched resources and a mounting list of tasks that fall at the CISO’s feet. High Expectations and Limited Resources.

In this version of the Hacker’s Playbook Threat Coverage round-up, we are highlighting attack coverage for several new threats. SafeBreach customers can select and run these attacks and more from the SafeBreach Hacker’s Playbook to ensure coverage against these advanced threats.

People have always been susceptible to a deal that is too good to be true. In the 1800s, American con man George C. Parker was best known for his repeated successes in "selling the Brooklyn Bridge” to the unwary. Then, in the 1900s it became popular to sell "valuable" Florida real estate that turned out to be swampland.

“Aren’t you a little short for a Stormtrooper?” In this iconic Star Wars moment, Princess Leia lazily responds to Luke Skywalker, disguised as one of her Stormtrooper captors and using authentication information to open her cell. In other words, Star Wars acts as an analogy for a cross-site request forgery (CSRF) attack. In a CSRF attack, malicious actors use social engineering so that end-users will give them a way to “hide” in their authenticated session.

Cyber supply chain risk management (C-SCRM) is the process of identifying, assessing, and mitigating cybersecurity risks associated with an organization’s supply chain. Supply chains comprise multiple attack vectors, ranging from procurement tools to suppliers, developers, and third-party services. The complexity of this attack surface warrants a risk management strategy focused on supply chain risks as an extension to an existing third-party risk management program.

It’s almost time for KubeCon North America, and we’re excited to share the latest updates in Calico. These updates improve network and runtime security, make it easier to use, and extend Calico’s strong network security and observability for Kubernetes to VMs and hosts that are not part of Kubernetes clusters.

On October 31st, 2024, another package compromise and cryptocurrency hijack story unfolded for a popular npm package.

Passwords are required to do practically everything, from watching TV and accessing your phone to making a doctor’s appointment and paying your electric bill. Without a password manager, it’s virtually impossible to remember all of your passwords, particularly if you’re using strong and unique ones for each account.