%term

Holistic Visibility: An Introduction to Telemetry

Mar 30, 2023 By Arctic Wolf In Arctic Wolf

As cybercrime evolves and organizations migrate to the digital realm, there’s been an ongoing race among businesses to evade bad actors, stay ahead of emerging threats, and mature their security posture. While tools are a critical component of these proactive and reactive defenses, tools alone are not enough, especially when it comes to telemetry.

Read Post

Arctic Wolf

Read more about Holistic Visibility: An Introduction to Telemetry

Artificial Intelligence Makes Phishing Text More Plausible

Mar 30, 2023 By Stu Sjouwerman In KnowBe4

Cybersecurity experts continue to warn that advanced chatbots like ChatGPT are making it easier for cybercriminals to craft phishing emails with pristine spelling and grammar, the Guardian reports. Corey Thomas, CEO of Rapid7, stated, “Every hacker can now use AI that deals with all misspellings and poor grammar. The idea that you can rely on looking for bad grammar or spelling in order to spot a phishing attack is no longer the case.

Read Post

KnowBe4

Read more about Artificial Intelligence Makes Phishing Text More Plausible

How Often Should You Do a Penetration Test? | Razorthorn Security

Mar 30, 2023 By Razorthorn In Razorthorn

James Rees from Razorthorn Security shares his thoughts on a LinkedIn poll that asked how often a penetration test should be performed. He reveals the results of the poll and explains why he thinks quarterly testing is the best option for most organizations. Watch this video to learn more about the benefits of regular penetration testing and how Razorthorn Security can help you with your cybersecurity needs.

View Video

Razorthorn

Security

Read more about How Often Should You Do a Penetration Test? | Razorthorn Security

DNS-Based Threats and Their Impact on Business

Mar 30, 2023 By Kerry McQuarrie In CISO Global

A Domain Name System (DNS) is a protocol that translates human-readable domain names/URLs—like favoritewebsite.com—into IP addresses that computers can read—like 135.24.56.98. DNS servers handle tens of thousands of queries that transfer minute bits of data between devices, systems, and servers—which makes DNS an attractive and easily exploitable vector for hackers (Cloudns.net).

Read Post

CISO Global

Read more about DNS-Based Threats and Their Impact on Business

Level Up Your Unit Tests: How to Turn a JUnit Test into a Fuzz Test

Mar 30, 2023 By Khaled Yakdan In Code Intelligence

Unit tests are indispensable to check and prove that our code functions properly. But in unit testing, we only test the scenarios that we are aware of. However, there are scenarios unknown to us that lead to security vulnerabilities or performance problems. To address these scenarios, you can add fuzz tests in order to effectively find security, reliability, and even logic bugs in your code.

Read Post

Code Intelligence

Read more about Level Up Your Unit Tests: How to Turn a JUnit Test into a Fuzz Test

Supply Chain Attack Targeting 3CX Softphone Application

Mar 30, 2023 By James Liolios In Arctic Wolf

On Wednesday, March 29, 2023, details of unexpected malicious activity observed from the legitimate and cryptographically signed 3CX SoftPhone Desktop App application were shared in a blog post by security researchers at Crowdstrike.

Read Post

Arctic Wolf

Read more about Supply Chain Attack Targeting 3CX Softphone Application

16 Ways Cloud WAFs are Better than On-Premise WAFs

Mar 30, 2023 By Indusface In Indusface

A Web Application Firewall (WAF) is a security solution designed to protect web applications from various attacks, including SQL injection, cross-site scripting (XSS), and others. There are two types of WAF: on-premise and cloud-based.

Read Post

Indusface

Read more about 16 Ways Cloud WAFs are Better than On-Premise WAFs

Weekly Cyber Security News 30/03/2023

Mar 30, 2023 By Kevin In ionCube24

A selection of this week’s more interesting vulnerability disclosures and cyber security news. For a daily selection see our twitter feed at #ionCube24. If during the past week you panicked when you went to do a push to git, and saw the alarm that your connection could be compromised, don’t worry, github just rotated keys because…

Read Post

ionCube24

Read more about Weekly Cyber Security News 30/03/2023

Elevate your AWS Experience: Unleash the Power of Veeam BaaS with David Johnson and Sagi Brody

Mar 30, 2023 By Opti9 In Opti9

In this video, we're taking a deep dive into the world of Veeam's BaaS solutions on AWS. You'll get an insider's perspective on navigating this powerful tool, optimizing your backup strategy, and ensuring seamless recovery. With Industry Leaders David Johnson and Sagi Brody! Unleash the Potential of Your AWS Environment! In this highly informative webinar, we bring you two renowned experts in AWS Marketplace: David Johnson, Head of Business Development at AWS Marketplace, and Sagi Brody, CTO at Opti9.

View Video

Opti9

Read more about Elevate your AWS Experience: Unleash the Power of Veeam BaaS with David Johnson and Sagi Brody

The Evolution of Qakbot: How Cato Networks Adapts to the Latest Threats

Mar 30, 2023 By Zohar Buber In Cato Networks

The world of cybersecurity is a never-ending battle, with malicious actors constantly devising new ways to exploit vulnerabilities and infiltrate networks. One such threat, causing headaches for security teams for over a decade, is the Qakbot Trojan, also known as Qbot. Qakbot has been used in malicious campaigns since 2007, and despite many attempts to stamp it out, continues to evolve and adapt in an attempt to evade detection.

Read Post