%term

Compromised Credentials: Tactics, Risks, Mitigation

May 31, 2023 By Darja Feldman In Cyberint

The theft of users’ credentials is a growing industry. The market for compromised credentials is vast and has huge potential due to: These factors have created a lucrative market for cybercriminals who are able to steal credentials and sell them on the black market. The stolen credentials can then be used to access personal and financial information, commit identity theft, or launch other cyberattacks.

Read Post

Cyberint

Read more about Compromised Credentials: Tactics, Risks, Mitigation

AWS EC2 Vulnerability Scanning: Why Is It Needed?

May 31, 2023 By Nivedita James In Astra

The AWS cloud platform is one of the most used cloud platforms in the world. It gives companies a level of flexibility with its myriad of uses but it is not without its own challenges, namely, maintaining security.

Read Post

Astra

Read more about AWS EC2 Vulnerability Scanning: Why Is It Needed?

Security Obscurity: DNS Tunnelling and CensysGPT

May 31, 2023 By Cato Networks In Cato Networks

Join Bill Carter and Robin Johns as they talk about the latest and greatest Cybersecurity topics and incidents happening across our digital landscape. In this episode we dive into the concepts and attack vectors of DNS Tunnelling, as well as start exploring the dangerous OSINT tools of Shodan and Censys. Security through obscurity used to be acceptable, but with GPTs and Adversarial GANs appearing - is this still a valid approach?

View Video

Cato Networks

AI
Security

Read more about Security Obscurity: DNS Tunnelling and CensysGPT

Keeper Security Named Winner for Encryption in 2023 Fortress Cybersecurity Awards

May 31, 2023 By Anne Cutler In Keeper

We at Keeper Security are proud to announce that we’ve been recognized by the 2023 Fortress Cybersecurity Awards as the overall winner for Encryption. The Business Intelligence Group conducts the annual Fortress Cybersecurity Awards to recognize experts, engineers, people and products in the field of cybersecurity.

Read Post

Keeper

Read more about Keeper Security Named Winner for Encryption in 2023 Fortress Cybersecurity Awards

UK Security Policy Framework and Government Security Classifications Compliance

May 31, 2023 By Irena Mroz In archTIS

The UK government’s Security Policy Framework (SPF) outlines the expectations and requirements for security measures to be implemented across UK government departments, and external agencies handling government information and data assets. The framework covers various aspects of information security, including governance, risk management, technology and services, and culture and awareness.

Read Post

archTIS

Read more about UK Security Policy Framework and Government Security Classifications Compliance

Understanding FedRAMP System Boundaries

May 31, 2023 By Ignyte In Ignyte

In the ever-changing world of technology, staying secure is a top priority for many organizations. Identifying and documenting system boundaries is essential for keeping data safe and secure, but what does this mean? In this article, we’ll explore system boundaries, how to identify them, and how to generate system boundary diagrams. By the end of this guide, you’ll be well-versed in understanding system boundaries and creating diagrams that can help keep your information secure!

Read Post

Ignyte

Read more about Understanding FedRAMP System Boundaries

Expanding Enterprise Attack Surfaces (EAS) and the increasing importance of Identity & Access Management

May 31, 2023 By darren thomson In One Identity

In the past five years, Enterprise Attack Surfaces (EAS) have evolved significantly. EAS refer to the various entry points that cybercriminals can exploit to gain unauthorized access to an organization's digital assets. With the increasing use of cloud-based services, the proliferation of connected devices and the growing reliance on third-party vendors, attack surfaces have become broader, more numerous and more complex.

Read Post

One Identity

Read more about Expanding Enterprise Attack Surfaces (EAS) and the increasing importance of Identity & Access Management

Focusing On Productivity Helps Reduce Insider Risk

May 31, 2023 By Elizabeth Harz In Veriato

Many companies are concerned by the uptick in insider risk that’s come with the work-from-home boom. By one estimate, 58% of office workers work from home at least one day a week. This trend creates blind spots for companies. Managers see their employees less often, people work off network and on personal devices, and they keep schedules that don’t adhere to the previous more predictable hours.

Read Post

Veriato

Read more about Focusing On Productivity Helps Reduce Insider Risk

Avoiding the ransomware trap

May 31, 2023 By Centripetal

Even large, global firms with enormous IT budgets are falling victim to the latest attacks. Why? Because cybercriminals know that popular network inspection and threat intelligence solutions can't keep up with the deluge of attacks hammering at our networks daily. But there is hope! By evolving from traditional threat intelligence to ThreatOps, we can put an end to ransomware and proactively shield your business from 99% of global threats mapped by the threat intelligence community automatically.

Get EBook

Centripetal

Read more about Avoiding the ransomware trap

Amazon Security Lake & ChaosSearch deliver security analytics with industry-leading cost & unlimited retention

May 30, 2023 By Sandro Lima In ChaosSearch

Amazon Security Lake is a new service from Amazon Web Services (AWS) that is designed to help organizations improve their security posture by automating the collection, normalization, and consolidation of security-related log and event data from integrated AWS services and third-party services (Source Partners). By centralizing all the security data in a single location, organizations can gain greater visibility and identify potential threats more quickly.

Read Post