Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

When working with Amazon Web Services (AWS), we often find that various AWS services need to store and manage secrets. AWS Secrets Manager is the go-to solution for this. It's a centralized service designed to help manage sensitive information securely, significantly reduce the risk of credential compromise, and facilitate your credential management process. However, there's more to it than just storing secrets.

Since 2020, working from home has become commonplace. In the wake of the COVID-19 pandemic, almost every company had to switch their traditionally in-office employees to some version of hybrid or remote work. Indeed, working from home became the new “normal” almost overnight. We all have a variety of collective experiences and observations during this time of no longer commuting to work, sitting in a cubicle, or chatting with coworkers at the water cooler.

The world is just beginning to understand how the intersection of artificial intelligence (AI) and data privacy will impact organizations, their employees, and those who use their services. As of June 2024, there are simply too many unknowns.

Malware is malicious software that can infect your device in many ways, like when you download a free game or movie. Some signs that your device is infected with malware include random pop-ups, freezing or slowing down, suddenly limited storage space and apps you don’t remember installing. Continue reading to learn the 10 most common signs that your device has a malware infection, how to remove malware from your device and how to protect your devices from becoming infected.

A question that all small, security-conscious organisations face is: “What's next?” They know that their antivirus (AV) is not enough. AVs detect malware through a combination of signatures, heuristics, and integrity checking. However, an AV cannot detect malware that is encrypted or that mimics trusted applications or insider threats, such as an employee exfiltrating client data to a third party. More than half of all detected malware now evades AV solutions.

In today’s interconnected digital landscape, distributed denial of service (DDoS) attacks pose a significant threat to organizations of all sizes. To effectively combat this ever-evolving menace, there is a critical need for DDoS threat intelligence and collaborative sharing of data. We’ll explore the importance of DDoS threat intelligence, the benefits of collaborative data sharing, and the collective effort required to mitigate the impact of DDoS attacks.

A new report focused on cyber espionage actors targeting government and critical infrastructure sectors highlights the strategic use of ransomware for distraction or misattribution. It was inevitable: a threat group using a secondary attack type to cover their tracks – whether those “tracks” are the groups true intent, who’s responsible – or to simply make some additional money after they’re done with the initial attack.

According to the filing, the organization in question failed to devise controls to adequately detect, respond to, and disclose an attack that included data exfiltration and service disruption. Back in 2021, R.R. Donnelley & Sons Co.

In our interconnected online world, the security of applications and the data they process is essential. Open-Source Intelligence (OSINT) plays a critical role in enhancing application security by offering valuable insights into potential threats, vulnerabilities, and the overall security posture of an organization.

Managing access to resources efficiently and securely within today’s complex IT environments is paramount. Two prominent access control models, Role-Based Access Control (RBAC) and Attribute-Based Access Control (ABAC), play crucial roles in this endeavor. Understanding their relationship and how they can be integrated is essential for optimizing security and operational efficiency.