Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Debit card fraud can happen in an instant, and once your money is gone, getting it back isn’t always easy. Watch this short video to learn 10 simple ways to protect your debit card from fraud.

Weak passwords are a major security risk, leaving your organization vulnerable to ransomware attacks, account takeovers and data breaches. In this video, we break down how weak passwords lead to ransomware, the additional risks they pose and how organizations can protect themselves.

Passwords are the first line of defense for your accounts, but are they strong enough? Watch this video to learn the key differences between passphrases and passwords and how you can easily create and store them with Keeper.

Mend.io, formerly known as Whitesource, has over a decade of experience helping global organizations build world-class AppSec programs that reduce risk and accelerate development -– using tools built into the technologies that software and security teams already love. Our automated technology protects organizations from supply chain and malicious package attacks, vulnerabilities in open source and custom code, and open-source license risks.

This video explores the current and future state of zero day vulnerabilities and cyber attacks which have been on the rise in 2024 and 2025.

This week’s briefing covers: Dive deeper: Playlist of Kroll's Weekly Cyber Threat Intelligence Briefings.

This week on the podcast, we discuss key findings from a DefCon presentation from researchers at AmberWolf titled ZeroTrust, Total Bust and what it means for Zero Trust Network Access. After that, we review a new vulnerability in the FortiWeb WAF before ending with a quick update from Google Project Zero on a new vulnerability disclosure policy. The 443 Security Simplified is a weekly podcast that gets inside the minds of leading white-hat hackers and security researchers, covering the latest cybersecurity headlines and trends.

In traditional intel roles, analysts avoid making direct recommendations. But Scott Scher explains why that doesn’t work in the business world. CTI teams can’t just present options, they need to say what should happen next. Scott breaks down why effective CTI must go beyond context and offer clear, actionable guidance for defenders. Hidden Truths: Traditional intel avoids giving direct recommendations Business leaders and defenders want clear next steps CTI teams must say.

Defending Against WAF, API, and DDoS Attacks In this SourceForge video, Carlo Alpuerto of A10 Networks shares insights on how ThreatX protects WAF, API, DDoS, and bot attacks, processing all the information within a single database. Alpuerto highlights the platform's ability to apply these protections and actionability, showcasing how users can create and manage specific rules. He also notes that the ThreatX security operations center (SOC) team curates these rules daily, utilizing threat intelligence, CVE notifications, and zero-day news to provide comprehensive, up-to-date protection.

Nucleus CISO Jeff Gouge discusses the difference between security vs. convenience in this short webinar clip.