%term

Understanding Continuous Threat Exposure Management

May 24, 2024 By CyCognito

CTEM, a comprehensive risk reduction framework, integrates visibility risk assessment, issue prioritization, and validation. This approach facilitates the continuous identification and testing of exposed systems, enhancing decision-making and enabling a more proactive threat response. Download the white paper, Understanding Continuous Threat Exposure Management, to learn about CTEM's core components and how they contribute to cybersecurity resilience, how CTEM addresses the challenge of managing risk on attack surfaces, and how CyCognito's capabilities align with CTEM's requirements.

Get White Paper

CyCognito

ASM
Security

Read more about Understanding Continuous Threat Exposure Management

Elevating efficiency with automated enterprise application testing

May 23, 2024 By SecuritySenses In SecuritySenses

Businesses are heavily reliant on a diverse range of technologies and applications for their growth. Today, business expansion is experiencing a significant boost due to widespread availability of robust cloud-based applications including SaaS, IaaS, and other "as a service" solutions. It is predicted by surveys that a majority of SMBs (77%) amplified their dependence on technology in response to the pandemic.

Read Post

SecuritySenses

Read more about Elevating efficiency with automated enterprise application testing

Cato Networks' Impact and analysis of CVE-2024-3661 - "TunnelVision" VPN vulnerability

May 23, 2024 By Vadim Freger In Cato Networks

On May 6th, 2024, researchers from the Leviathan Security Group published an article detailing a technique to bypass most VPN applications, assigned as CVE-2024-3661 with a High CVSS score of 7.6. Researchers have labeled this technique ‘decloaking’ as while the VPN tunnel remains connected, it allows attackers to trick many VPN clients into sending traffic via a side channel and not through the encrypted tunnel.

Read Post

Cato Networks

Read more about Cato Networks' Impact and analysis of CVE-2024-3661 - "TunnelVision" VPN vulnerability

#124 - CTI & Detection Engineering with Wade Wells, Lead Cybersecurity Threat Detection Engineer

May 23, 2024 By LimaCharlie In LimaCharlie

In this episode of The Cybersecurity Defenders Podcast, we take a close look at the intersection of CTI & Detection Engineering with Wade Wells, Lead Cybersecurity Threat Detection Engineer.

View Video

LimaCharlie

Read more about #124 - CTI & Detection Engineering with Wade Wells, Lead Cybersecurity Threat Detection Engineer

Mitigating Data Poisoning Attacks on Large Language Models

May 23, 2024 By Rahul Sharma In Protecto

Large language models (LLMs) have experienced a meteoric rise in recent years, revolutionizing natural language processing (NLP) and various applications within artificial intelligence (AI). These models, such as OpenAI's GPT-4 and Google's BERT, are built on deep learning architectures that can process and generate human-like text with remarkable accuracy and coherence.

Read Post

Protecto

Read more about Mitigating Data Poisoning Attacks on Large Language Models

Transform Collaboration with the Power of Egnyte and Microsoft Copilot in Microsoft Teams

May 23, 2024 By Sanjay Kosuri In Egnyte

As part of our ongoing partnership and investment in Microsoft, we have deepened our integration with Microsoft's Copilot within Microsoft Teams. This integration expands Copilot's capabilities by incorporating Egnyte as an additional data source. Microsoft 365 Copilot users can now derive valuable insights from documents stored in Egnyte, enhancing the usefulness of both Egnyte and the Microsoft Copilot solution for joint customers.

Read Post

Egnyte

Read more about Transform Collaboration with the Power of Egnyte and Microsoft Copilot in Microsoft Teams

An Actionable Guide to OWASP MASVS V2 (+ Practical Examples)

May 23, 2024 By Raghunandan J In Appknox

In an era of digital innovation and technological advancements, robust application security has never been more crucial. As cyber threats continue to evolve, organizations must stay ahead of the curve to protect their sensitive data and maintain the security of their users. One project that can help in this process is OWASP (Open Web Application Security Project), a globally recognized non-profit organization dedicated to improving application security.

Read Post

Appknox

Read more about An Actionable Guide to OWASP MASVS V2 (+ Practical Examples)

Bringing a Better (and Smarter) Samaritan to Secure the Open Source

May 23, 2024 By Guardians In GitGuardian

GitGuardian's Confidence Scorer, a machine-learning model, is being rolled out. Learn how it advances secret detection on GitHub and drives impactful developer alerts.

Read Post

GitGuardian

Read more about Bringing a Better (and Smarter) Samaritan to Secure the Open Source

Buckle Up: NOAA Predicts "Above-Normal" 2024 Hurricane Season

May 23, 2024 By James Costanzo In 11:11 Systems

For businesses operating along the Southern and Eastern Atlantic coast, each hurricane season ushers in a storm front of anxiety and trepidation — in addition to all that wind and rain. And for good reason. According to the National Oceanic and Atmospheric Administration (NOAA), hurricanes are the deadliest and most costly type of weather disaster, responsible for nearly $2.6 trillion in damage since 1980.

Read Post

11:11 Systems

Read more about Buckle Up: NOAA Predicts "Above-Normal" 2024 Hurricane Season

The Double-Edged Sword of Artificial Intelligence (AI) in Cybersecurity

May 23, 2024 By Lorri Janssen-Anessi In BlueVoyant

As artificial intelligence (AI) continues to advance, its impact on cybersecurity grows more significant. AI is an incredibly powerful tool in the hands of both cyber attackers and defenders, playing a pivotal role in the evolving landscape of digital threats and security defense mechanisms. In this blog, let’s explore the ways AI is employed by attackers to conduct cyber attacks, and how defenders are using AI to deter and counter threats.

Read Post