%term

CTI Roundup: Skuld Malware Steals Discord Data From Windows PCs

Jun 21, 2023 By Tanium In Tanium

Chinese hackers use DNS-over-HTTPS for Linux malware communication, a new Golang-based Skuld malware strand steals Discord and browser data from Windows PCs, and a massive phishing campaign uses 6,000 sites to impersonate brands.

Read Post

Tanium

Read more about CTI Roundup: Skuld Malware Steals Discord Data From Windows PCs

EP 30 - Securing Data Amid the AI Gold Rush

Jun 21, 2023 By CyberArk In CyberArk

Diana Kelley, Chief Information Security Officer (CISO) at Protect AI joins host David Puner for a dive into the world of artificial intelligence (AI) and machine learning (ML), exploring the importance of privacy and security controls amid the AI Gold Rush. As the world seeks to capitalize on generative AI’s potential, risks are escalating.

Read Post

CyberArk

Read more about EP 30 - Securing Data Amid the AI Gold Rush

Improve your risk posture: Introducing Risk Management customization

Jun 21, 2023 By Vanta In Vanta

Today we’re excited to announce Risk Management customization, a collection of new capabilities in our platform that enhance the existing Risk Management solution and give you more flexibility to enable custom risk management scoring and prioritization. Currently in beta, Risk Management customization will be generally available in the coming months. ‍ ‍

Read Post

Vanta

Read more about Improve your risk posture: Introducing Risk Management customization

Phishing Campaigns Abusing Telegram to Bypass MFA

Jun 21, 2023 By Gustavo Palazolo In Netskope

Netskope Threat Labs is tracking phishing campaigns targeting customers of seven different financial institutions across North, Central, and Latin America, aiming to steal their credentials to make fraudulent transactions. Attackers are abusing the Royal Web Hosting company, which provides a free web hosting plan, to host the malicious pages.

Read Post

Netskope

Read more about Phishing Campaigns Abusing Telegram to Bypass MFA

Account Takeover attacks: the viewpoint of a threat intelligence expert

Jun 21, 2023 By Datadog In Datadog

Account takeover happens when someone tries to steal a user account. Any service offering authentication can face it since an attacker just has to test pairs of users and passwords. Zack Allen joins us to share his experience protecting organizations that faced massive account take over, describes the criminal and financial motivation of attackers, their methods to hide, and how they move from a database leak to a compromised account. We show the tools that attackers most commonly use. Eventually, we discuss how to detect and protect your organization around account take over.

View Video

Datadog

Read more about Account Takeover attacks: the viewpoint of a threat intelligence expert

Introducing the Tines Toolkit

Jun 21, 2023 By Troy Wegner In Tines

Hello friends, it’s Troy, your friendly neighborhood automation engineer, here to guide you through a really cool feature, or product-within-our-product, which is the Tines Toolkit. We launched the toolkit back in May, and this guide will help you navigate the features available today.

Read Post

Tines

Read more about Introducing the Tines Toolkit

Forward Networks' Digital Twin Technology Named Best SaaS Solution by Cloud Security Awards

Jun 20, 2023 By Forward Networks In Forward Networks

Forward Enterprise Also Wins Silver Globee® Disruptor Award in the Cybersecurity Cloud/SaaS Category.

Read Post

Forward Networks

Read more about Forward Networks' Digital Twin Technology Named Best SaaS Solution by Cloud Security Awards

Honeypot Recon: MSSQL Server - Database Threat Overview '22/'23

Jun 20, 2023 By Radoslaw Zdonczyk, Mariusz Siedlecki In Trustwave

In a constantly connected world, protecting sensitive data in what are often complex database structures requires staying up to date with cyber criminals’ malicious attack techniques, and infection methods. This research is an extension of another project which involves monitoring attacks carried out on database servers worldwide. Understanding how these bots work can keep your digital world safe and secure.

Read Post

Trustwave

Read more about Honeypot Recon: MSSQL Server - Database Threat Overview '22/'23

Evidence-Based Strategies to Lower Your Risk of Becoming a Ransomware Victim

Jun 20, 2023 By Rachel Holmes In BitSight

The ransomware trend continues to run rampant. One in four breaches involve ransomware, and organized crime actors use ransomware in more than 62 percent of incidents. Cyber criminals are taking advantage of these new opportunities to exploit a greatly expanded attack surface: But ransomware is only one small piece that a security leaders has to manage. The threat of ransomware is compounded by a distributed workforce, trends toward technology consolidation, geopolitical upheaval, and budget constraints.

Read Post

BitSight

Read more about Evidence-Based Strategies to Lower Your Risk of Becoming a Ransomware Victim

How to secure Kubernetes workloads using Calico DNS Security Policy

Jun 20, 2023 By Pooriya Aghaalitari In Tigera

In my previous blog on Kubernetes security foundations, we discussed the growing adoption of cloud-native applications and the security challenges they present. We highlighted the limitations of traditional network firewalls in securing these applications and emphasized the importance of implementing cloud-native security policies to protect network traffic effectively.

Read Post