Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

This week on the podcast, we cover the recent HTTP/2 protocol vulnerability that lead to the largest DDoS attack ever recorded by CloudFlare. After that, we discuss Microsoft's announcement about the deprecation of VBScript and the impending removal of NTLM. We then cover a collection of data allegedly stolen from the genealogy website 23 and Me before ending with a fun bit of research targeting private servers for the Grand Theft Auto Online video game.

Did you know that GitGuardian can add comments directly to your GitHub pull requests and even stop a PR from succeeding if it contains any hardcoded secrets? When a new pull request is created, a new check run is performed, and GitGuardian will scan through each commit inside the PR, not just the most recent one. If someone added a secret to an early commit, but then removed it right before making the PR, you still need to know it is present in the git history so you can address it.

In the world of cyber insurance, organizations face the challenge of securing sufficient coverage for their digital assets. With cyber threats on the rise, relying solely on a single insurance policy often falls short of what's needed. As a result, organizations find themselves reinsurance and stacking policies to bolster their protection. This video explores the intricate process of navigating the cyber insurance landscape, where companies seek to cover potential losses by obtaining multiple policies and strategically distributing risk among insurers.

Jit is LIVE with #AWS! Join us for the THIRD and FINAL episode in our series on cloud security! David Melamed, PhD will discuss ‘Protecting a Modern App (part 2) - from AWS deployment to cloud-native vigilance’ on #TheBigDevTheory - hosted by Stuart Clark, and joined by guest Toni de la Fuente.

Before you count your cyber security partners, make sure you can count on them.

The issue at hand is a direct result of the significant ransomware attacks that have forced organizations to pay out millions. In response, insurance companies have adopted a seemingly superficial, tick-box approach to cybersecurity assessments. Although they are attempting to enhance their due diligence, they fall short in truly evaluating security measures. Instead of thorough testing and on-site inspections, insurance companies rely on organizations to truthfully disclose their cybersecurity measures.

Gain access to the best cybersecurity training from anywhere, anytime, with these top 5 cybersecurity apps for iOS and Android 📱 Cybersecurity attacks are very common; learn which top 5 cybersecurity tools and apps can help you to prevent them 🛡️ Learn more at https://internxt.com/cyber-awareness

What happens when a team member reports a lost laptop on a Friday evening? In most cases, it doesn't get locked down by IT until Monday morning 😬 Enter automation. �� This Tines story created by Conor Dunne allows users to mark the device as lost and prevent further access through Jamf. Conor & the Labs team will be recording more walkthroughs like this & adding them directly to the Story Library to help you bring them to life in your tenant.