%term

New Phishing Kit Bypasses MFA to Steal Microsoft 365 Credentials

Aug 28, 2025 By KnowBe4 Team In KnowBe4

Attackers are using a newly discovered phishing-as-a-service (PhaaS) platform dubbed “Salty 2FA” to target a wide range of industries across North America and Europe, according to researchers at ANYRUN. The phishing attacks are delivered via email and primarily attempt to steal Microsoft 365 credentials. Like many popular commodity phishing kits, Salty 2FA is designed to bypass a variety of multifactor authentication measures.

Read Post

KnowBe4

Read more about New Phishing Kit Bypasses MFA to Steal Microsoft 365 Credentials

Sharpen Your Vendor Risk Decisions

Aug 28, 2025 By UpGuard In UpGuard

Letecia Allen, Senior Product Marketing Manager, will showcase smarter AI and sharper controls in Vendor Risk, turning assessments into actionable insights. Interested in finding out more about UpGuard?

View Video

UpGuard

Read more about Sharpen Your Vendor Risk Decisions

Passwordless Authentication vs MFA: What is the Difference & Which is Good?

Aug 28, 2025 By miniOrange In miniOrange

Compare Passwordless Authentication and MFA. Check types, benefits, and other key differences to determine which method best suits your organization’s needs.

Read Post

miniOrange

Read more about Passwordless Authentication vs MFA: What is the Difference & Which is Good?

What is Information Security?

Aug 28, 2025 By Cyberhaven In Cyberhaven

Unlock the secrets of Information Security (Infosec)! In today's digital age, protecting your data is paramount. This video breaks down what Infosec truly is, going beyond just digital threats to cover all forms of information – from physical files to conversations.

View Video

Cyberhaven

Read more about What is Information Security?

How To Boost Your Internet Security: Simple Steps! #appsec #infosec

Aug 28, 2025 By Mend In Mend

Mend.io, formerly known as Whitesource, has over a decade of experience helping global organizations build world-class AppSec programs that reduce risk and accelerate development -– using tools built into the technologies that software and security teams already love. Our automated technology protects organizations from supply chain and malicious package attacks, vulnerabilities in open source and custom code, and open-source license risks.

View Video

Mend

Read more about How To Boost Your Internet Security: Simple Steps! #appsec #infosec

A Tale of Two Ransomware-as-a-Service Threat Groups

Aug 28, 2025 By Trustwave In Trustwave

Ransomware distributors are bad enough, but there should be a special place in the dark web's basement that only offers ISDN connections and no Wi-Fi, reserved for those groups that insist their attack was a benign cybersecurity service or those who only attack entities that they say deserve to be struck. At least based on their logic.

Read Post

Trustwave

Read more about A Tale of Two Ransomware-as-a-Service Threat Groups

Fireside Chat | Adapting Security Leadership for the Age of AI

Aug 28, 2025 By UpGuard In UpGuard

Erika Carrara, VP & Chief Information Security & Infrastructure Officer at The Greenbrier Companies, shares how she’s adapting her security strategy to meet the demands of the AI era by modernising her tech stack, implementing AI governance, and embedding security into business culture. Interested in finding out more about UpGuard?

View Video

UpGuard

Read more about Fireside Chat | Adapting Security Leadership for the Age of AI

The Data Volume & Visibility Crisis in Cybersecurity

Aug 28, 2025 By Cyberhaven In Cyberhaven

Enterprises are drowning in data — and struggling to see what really matters. The explosion of data volume has created a visibility crisis that makes it harder than ever to protect sensitive information and stop insider threats. In this short video, we explain why traditional tools can’t keep up, what makes visibility so critical, and how organizations can regain control over their data. Watch now to learn.

View Video

Cyberhaven

Read more about The Data Volume & Visibility Crisis in Cybersecurity

Optimizing the SOC: Leveraging AI and automation for modern threats

Aug 28, 2025 By Tines In Tines

The Security Operations Center (SOC) is the nerve center of an organization's defenses, but its efficiency and effectiveness are often limited by the growing volume and complexity of threats. By leveraging AI-driven threat detection and automated incident response, security leaders can optimize their SOC to respond faster and smarter. For CISOs, this means not only protecting the organization from current threats but also future-proofing defenses against an increasingly sophisticated threat landscape.

View Video

Tines

Read more about Optimizing the SOC: Leveraging AI and automation for modern threats

From Code Commit to Secure Deploy: SCM Code Scanning Best Practices with Veracode

Aug 28, 2025 By Veracode Engineering Team In Veracode

In today’s fast-moving world of cloud-native development and CI/CD pipelines, code flows from commit to production faster than ever. And with that speed comes risk. That’s why code scanning in SCM (Source Code Management) has become a critical part of modern DevSecOps. Veracode’s new SCM Integration makes it easy to secure applications from the very first commit, directly within the SCM, without disrupting developer workflows.

Read Post