Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

“In Q3, we did see an uptick in incidents impacting the manufacturing and construction sector largely led by business email compromise (BEC) or email compromise attacks. One of the reasons for this uptick in BEC attacks has to do with the reliance on third parties and suppliers.” – Laurie Iacono.

“From using QR codes in emails to sharing links via Microsoft Teams, threat actors are evolving their methodology to manipulate humans to click on the bait. This is not phishing through email; it's phishing through an instant messaging platform.” – Laurie Iacono.

Should businesses be worried about the AI security threat? How do we protect our children's devices from malware? We dive into all that and more in Watchtower Weekly. Plus, we sat-down with Jason and Nimisha from Datadog to discuss some of the challenges of securing the cloud and why it's important to get cloud security right. We also unveil a new 1Password SIEM integration with Datadog that gives you greater visibility into the security posture of your business, all from one central location! 🤖🐕

Patrick Garrity, Security Researcher at Nucleus Security, discusses the rise of vulnerabilities exploitation and threat intelligence in the field of vulnerability management. He highlights the history of vulnerability management, the increase in vulnerabilities and exploitation, the limitations of the common vulnerability scoring system (CVSS), and the emergence of vulnerability threat intelligence. Patrick also emphasizes the importance of open-source intelligence, such as CISA's Known Exploited Vulnerabilities (KEV) List and the Exploit Prediction Scoring System (EPSS), as well as the value of commercial threat intelligence.

Dive into the complex world of AI as we confront the negative comments and fears surrounding its advancement. Join the conversation on the need for increased regulation in the tech sphere and the potential consequences when technology falls into the wrong hands. Are we headed toward a Terminator-like future, or can we find a balance between innovation and ethical use?

Watch this demo to discover how OneLogin Workforce Identity enhances security and productivity by simplifying access management and providing a seamless user experience.

We’re all in this together, which is why awareness about APIs and connecting with one another is crucial to cyber security. Salt Security has recently announced our Salt Technical Ecosystem Partner Program which can help demonstrate the role of application security testing when it comes to API security and where it fits in a good API security program.

Cyber attacks on host virtual machines are on the rise! Are you prepared to detect and recover from VM encryption? Let us know what you’re doing to secure your VMs in the comments below! #shorts.

In this video we're looking at how to add an additional layer of security to containers using mandatory access control systems like Apparmor.

This week on the podcast, we look back to our 2023 security predictions and grade ourselves on how well we were able to see the future. We'll go through each of our 6 predictions, explain the trends that fueled them, and then provide either evidence that they came true or discuss reasons why they may not have yet. The 443 Security Simplified is a weekly podcast that gets inside the minds of leading white-hat hackers and security researchers, covering the latest cybersecurity headlines and trends.