Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Pascal Wehrlein takes the hot seat for 16 questions with Cato. From his journey as the ABB FIA Formula E Drivers’ World Champion to how data and technology have played a crucial role in his racing career— and how he balances it with family time —we cover it all. See what drives Pascal on and off the track. Let’s connect.

In this video, we will be stepping through how to do security checks for your npm package as well as version management and publishing.

This week on the podcast, we discuss the Common Vulnerability Scoring System or CVSS and why one popular developer thinks it's completely broken. After that, we cover Lumen's Black Lotus Labs' research into a Juniper backdoor malware. We end with the latest car hacking research and an admin portal with possibly the worst MFA implementation ever. The 443 Security Simplified is a weekly podcast that gets inside the minds of leading white-hat hackers and security researchers, covering the latest cybersecurity headlines and trends.

Managing AD group membership using native tools can quickly become overwhelming. However, most cybersceurity insurance policies and compliance standards also mandate a regular review and recertification of group memberships to avoid huge penalties. Eric Hibar, One Identity solutions engineer, explains the best path forward to solve your group management headaches.

On this episode of The Cybersecurity Defenders Podcast we speak with Garret Grajek, CEO of YouAttest, about how MSSPs help clients meet regulatory requirements and what it means for the MSSP.

Consider these key tips when it comes to keeping your sensitive data safe!

This week’s briefing covers: KTA080 (CL0P) Update Around January 28, 2025, KTA080 (CL0P) updated its data leak site with a new victim list of approximately 49 organizations. The organizations are likely from the previous redacted list that was reported on listings and are possibly associated with the Cleo zero-day vulnerability, but cannot be confirmed since the group does not indicate it in their post.

Isolate the most critical vendor IPs and domains for better prioritization of assets tied to sensitive data.

Watch the full video linked below for more...