%term

Inside the Adversary's Mind: How Cloudflare's Red Team Hacks to Defend

Aug 26, 2025 By Cloudflare In Cloudflare

Get a behind-the-scenes look at Cloudflare’s Red Team with Dan Jones — a Senior Security Engineer who thinks like an attacker to strengthen defenses. In this preview of his Cloudflare Connect 2025 talk, Dan shares how offensive security helps protect millions of Internet properties.

View Video

Cloudflare

Read more about Inside the Adversary's Mind: How Cloudflare's Red Team Hacks to Defend

Automating MITRE ATT&CK Analysis with Torq Socrates

Aug 26, 2025 By Bob Boyle In Torq

MITRE ATT&CK has become the de facto SOC framework for classifying adversary behavior — and for good reason. It gives SOC teams a common language to describe threats, uncover gaps, and fine-tune detection logic. But let’s be honest: mapping real-world activity to ATT&CK tactics and techniques is still a time-consuming grind.

Read Post

Torq

Read more about Automating MITRE ATT&CK Analysis with Torq Socrates

Master Tool Sprawl: A Path to Simplicity

Aug 26, 2025 By JumpCloud In JumpCloud

IT Pros: if you're feeling overwhelmed by the sheer number of IT tools, you're not alone. JumpCloud's new report found IT teams use an average of 9.3 tools for core functions. But this 'tool sprawl' isn't just an annoyance. 74% of IT pros say it adds complexity, and the top challenge? Security gaps, cited by 56%.

View Video

JumpCloud

Read more about Master Tool Sprawl: A Path to Simplicity

Securing the AI Revolution: Introducing Cloudflare MCP Server Portals

Aug 26, 2025 By Kenny Johnson In Cloudflare

Large Language Models (LLMs) are rapidly evolving from impressive information retrieval tools into active, intelligent agents. The key to unlocking this transformation is the Model Context Protocol (MCP), an open-source standard that allows LLMs to securely connect to and interact with any application — from Slack to Canva, to your own internal databases. This is a massive leap forward.

Read Post

Cloudflare

Read more about Securing the AI Revolution: Introducing Cloudflare MCP Server Portals

What is HTML Injection?

Aug 26, 2025 By VISTA InfoSec In VISTA InfoSec

HTML injection is a type of attack where malicious HTML code is inserted into a website. In this video, we'll explain what HTML injection is in detail, how it can impact your website's security & how to stay secured. Stay informed and protect your online presence!

View Video

VISTA InfoSec

Read more about What is HTML Injection?

Best Practices for Securing Generative AI with SASE

Aug 26, 2025 By AJ Gerstenhaber In Cloudflare

As Generative AI revolutionizes businesses everywhere, security and IT leaders find themselves in a tough spot. Executives are mandating speedy adoption of Generative AI tools to drive efficiency and stay abreast of competitors. Meanwhile, IT and Security teams must rapidly develop an AI Security Strategy, even before the organization really understands exactly how it plans to adopt and deploy Generative AI.

Read Post

Cloudflare

Read more about Best Practices for Securing Generative AI with SASE

Why Point-in-Time Audits Are Failing You

Aug 26, 2025 By Razorthorn Security In Razorthorn

Annual audits show how compliant you were on one day. But cyber threats don’t wait for next year’s check-in. We need a living, breathing approach to compliance.

View Video

Razorthorn

Read more about Why Point-in-Time Audits Are Failing You

CVE-2025-7775: Critical Citrix NetScaler Zero-Day RCE Exploited to Drop Webshells

Aug 26, 2025 By Andres Ramos In Arctic Wolf

On August 26, 2025, Citrix released fixes for a critical vulnerability in Citrix NetScaler ADC and Gateway (CVE-2025-7775) that has been exploited on unpatched appliances. The issue stems from a memory overflow flaw that could allow Remote Code Execution (RCE) and/or Denial of Service (DoS) by remote threat actors.

Read Post

Arctic Wolf

Read more about CVE-2025-7775: Critical Citrix NetScaler Zero-Day RCE Exploited to Drop Webshells

AI Data Privacy Breaches: Major Incidents & Analysis

Aug 26, 2025 By Protecto In Protecto

What if a single developer pastes sensitive code into a chatbot and, in seconds, exposes your company’s most valuable secrets? That’s not a thought experiment. Incidents at Samsung, Amazon, and other enterprises show how generative AI can turn everyday work into an unintentional leak.

Read Post

Protecto

Read more about AI Data Privacy Breaches: Major Incidents & Analysis

SBOM Security: 6 Key Components and Top 3 Use Cases

Aug 26, 2025 By Mend.io Team In Mend

An SBOM (Software Bill of Materials) is a structured list of components, including third-party and open-source software, that make up a software application. It’s a detailed inventory of everything that goes into a software product, similar to a list of ingredients for food. SBOMs are crucial for improving software security by providing transparency and enabling organizations to identify and address potential vulnerabilities and risks within their software supply chains.

Read Post