%term

6 Guidelines for Establishing a Robust Cyber Security Incident Response System

Dec 7, 2023 By María Sanchis In Internxt

A few CCTV cameras and a lock on the door. These used to be the only security measures an organization had to take to keep their business safe. Alas, those days are long gone. Now, having a Cyber Security Incident Response System (CSIRS) in place is critical. The internet is playing a bigger and bigger role in business. This means organizations become more and more vulnerable to cyber threats.

Read Post

Internxt

Read more about 6 Guidelines for Establishing a Robust Cyber Security Incident Response System

Splunk SOAR Logic Loops Demo

Dec 7, 2023 By Splunk In Splunk

Logic Loops are a feature in Splunk SOAR that allow users to reduce the operational complexity of building and maintaining playbooks that require repeatable looping functionalities without having to write their own custom code. This iterative function allows users to automatically retry playbook actions if they fail, or continue with the rest of the playbook when the action succeeds. This function can be applied to use cases like sandbox engines for malicious URL quarantine and remediation as well as forensic investigation workflows.

View Video

Splunk

Read more about Splunk SOAR Logic Loops Demo

How to Avoid and Prevent Identity Theft

Dec 7, 2023 By Tripwire Guest Authors In Tripwire

Identity theft is like a thief in the night; it can happen to anyone, anywhere, at any time. It is a real threat to everyone. We live in a time where so much personal information is stored online, which allows cybercriminals to steal it and use it for their gain. A Federal Trade Commission report shows that over 1 million people fell victim to identity theft in 2022. The most common types of identity theft are credit card fraud, bank fraud, and loan or lease fraud.

Read Post

Tripwire

Read more about How to Avoid and Prevent Identity Theft

The Hower - Episode 4: Clare Loveridge, Vice President and General Manager, EMEA, at Arctic Wolf.

Dec 7, 2023 By Arctic Wolf In Arctic Wolf

In this episode, our hosts sit down with Clare Loveridge, Vice President and General Manager, EMEA, at Arctic Wolf. Clare is an internationally focused global leader with more than 20 years experience in sales and channel leadership roles at companies like data domain and Nimble Storage where she's grown businesses across EMEA. Clare was the first person hired in the EMEA region at Arctic Wolf to start the region almost 3 years ago.

View Video

Arctic Wolf

Read more about The Hower - Episode 4: Clare Loveridge, Vice President and General Manager, EMEA, at Arctic Wolf.

BlackSuit ransomware - what you need to know

Dec 7, 2023 By Graham Cluley In Tripwire

A cybercriminal group calling itself BlackSuit has claimed responsibility for a series of ransomware attacks, including breaches at schools in central Georgia. And earlier in the year, a zoo in Tampa Bay was targeted by the same hacking gang.

Read Post

Tripwire

Read more about BlackSuit ransomware - what you need to know

WatchGuard Threat Lab Report Shows Rise in Threat Actors Exploiting Remote Access Software

Dec 6, 2023 By WatchGuard In WatchGuard

Notable findings from the research also show an 89% increase in endpoint ransomware attacks and a decline in malware arriving over encrypted connections.

Read Post

WatchGuard

Read more about WatchGuard Threat Lab Report Shows Rise in Threat Actors Exploiting Remote Access Software

CTI Roundup: Multiple Cyber Threats from North Korean Groups and a Telegram Bot Phishing Scam

Dec 6, 2023 By Tanium In Tanium

North Korean hackers pose as job seekers and recruiters, the Telekopye Telegram bot enables large-scale phishing scams, and DPRK-aligned threat actors target macOS in two campaigns.

Read Post

Tanium

Read more about CTI Roundup: Multiple Cyber Threats from North Korean Groups and a Telegram Bot Phishing Scam

Don't Be Fooled By This Sneaky Disney+ Scam

Dec 6, 2023 By Stu Sjouwerman In KnowBe4

A phishing campaign is impersonating Disney+ with phony invoices, according to researchers at Abnormal Security. The phishing emails targeted individuals at 22 organizations in September. “The first step in this multi-stage attack is a seemingly auto-generated notification email informing the target of a pending charge for their new Disney+ subscription,” the researchers explain.

Read Post

KnowBe4

Read more about Don't Be Fooled By This Sneaky Disney+ Scam

Request smuggling and HTTP/2 downgrading: exploit walkthrough

Dec 6, 2023 By Love Andrén In Outpost 24

During a recent penetration test on a customer application, I noticed weird interactions between the web front-end and back-end. This would eventually turn out to be a vulnerability called HTTP request smuggling, enabled by the fact that the front-end was configured to downgrade HTTP/2 requests to HTTP/1.1. With the help from my colleague Thomas Stacey, we were able to construct an exploit chain with response queue desynchronization along with traditional HTTP/1.1 request smuggling techniques.

Read Post

Outpost 24

Read more about Request smuggling and HTTP/2 downgrading: exploit walkthrough

90% of Energy Companies Experienced a Third-Party Breach

Dec 6, 2023 By SecurityScorecard In SecurityScorecard

More than two years after the major U.S. pipeline ransomware incident, the SecurityScorecard Threat Research, Intelligence, Knowledge, and Engagement (STRIKE) Team has released a new report revealing that 90% of the largest global energy companies have experienced a third-party breach in the past 12 months. This research highlights the uphill battle faced by the energy industry in combating emerging threats across the supply chain.

Read Post