%term

Weekly Cyber Security News 24/02/2023

Feb 24, 2023 By Kevin In ionCube24

A selection of this week’s more interesting vulnerability disclosures and cyber security news. For a daily selection see our twitter feed at #ionCube24. NameCheap last week, and it appears GoDaddy has discovered something too.

Read Post

ionCube24

Read more about Weekly Cyber Security News 24/02/2023

The importance of event correlation techniques in SIEM

Feb 24, 2023 By Graylog In Graylog

Event correlation tools are a fundamental instrument in your toolbox to detect threats from all sources across your organization in real time. A wise use of the right event correlation techniques through log management and analysis is the cornerstone of any reliable security information and event management (SIEM) strategy – a strategy that focuses on prevention rather than reaction.

Read Post

Graylog

Read more about The importance of event correlation techniques in SIEM

The Dark Net's One-Stop-Shop for Cybercrime: Ransomware

Feb 24, 2023 By Razorthorn In Razorthorn

In this video, I'll be taking you on a chilling journey through the inner workings of the dark net's cybercrime underworld. I'll show you how easy it is to buy a compromised server, purchase ransomware-as-a-service components, and install an Xbox kit to deploy the attack with friends. But the real eye-opener is the endgame: turning the stolen Bitcoin into cash. I'll reveal how Tumblr services on the dark net are used to launder money, and how traditional criminals use Doctrine to convert it into physical cash. Join me as I guide you step-by-step through this one-stop-shop for cybercrime, and expose the alarming ease with which it can all be accomplished. - Oliver Rochford

View Video

Razorthorn

Read more about The Dark Net's One-Stop-Shop for Cybercrime: Ransomware

Fuzzing in Jest - One Unified Workflow for Functional and Security Testing

Feb 24, 2023 By Code Intelligence In Code Intelligence

In this coding session, fuzzing expert Josh Grant will demo how the integration of Jazzer.js into Jest enables a unified workflow for functional and security testing in JavaScript. All with the familiar look and feel of a unit test.

View Video

Code Intelligence

Read more about Fuzzing in Jest - One Unified Workflow for Functional and Security Testing

A Breach Makes You Stronger

Feb 24, 2023 By SecurityScorecard In SecurityScorecard

There are two kinds of CISOs: pre-breach and post-breach. Pre-breach CISOs are overly focused on tools and thinking about investing in prevention technologies. They do this almost to the exclusion of thinking about recovery and timely restoration of services once something bad actually occurs. And something bad will happen; it’s not a matter of if, but when (and how often, I might add, so “breach cadence” seems a more suitable KPI than breach likelihood).

Read Post

SecurityScorecard

Read more about A Breach Makes You Stronger

How an Automated Onboarding API Can Streamline Your Business Processes

Feb 24, 2023 By Sumanth Kumar In IDcentral

Definition: Automated onboarding is a process designed and scripted before user onboarding. It is an entire user or customer onboarding process that doesn’t require real-time human interaction and is frequently supported by in-app messages and instructions that are specifically created to ensure a positive onboarding experience and, therefore, customer satisfaction.

Read Post

IDcentral

Read more about How an Automated Onboarding API Can Streamline Your Business Processes

ThreatQuotient Selected by Sysdig to Scale Cloud Threat Detection and Response

Feb 23, 2023 By ThreatQuotient In ThreatQuotient

Sysdig has standardised on the ThreatQ Platform for data-driven security operations, saving time and improving threat detection and research capabilities at scale.

Read Post

ThreatQuotient

Read more about ThreatQuotient Selected by Sysdig to Scale Cloud Threat Detection and Response

6 Australian Public Sector Cyber Trends to Watch in 2023

Feb 23, 2023 By Trustwave In Trustwave

As AISA’s Cyber Conference 2023 being held in Canberra March 20-22 approaches, I thought I would go over some of the hot topics that I expect delegates from Australian public sector organizations will be talking about at the event. And just a quick aside, Trustwave is a keen sponsor of the baristas at this year’s Australian Cyber Conference and we hope to share a hot beverage (of your choice) with you, so please stop by to discuss some of the following hot button topics.

Read Post

Trustwave

Read more about 6 Australian Public Sector Cyber Trends to Watch in 2023

New Kroll report reveals notable threat trends of 2022

Feb 23, 2023 By Mark Nicholls In Redscan

This and other notable threats from the previous quarter, as well as a look ahead to potential issues in 2023, are discussed in our Q4 Threat Landscape 2022 report.

Read Post

Redscan

Read more about New Kroll report reveals notable threat trends of 2022

Navigating the security challenges of multi-tenancy in a cloud environment

Feb 23, 2023 By Reza Ramezanpour In Tigera

Multi-tenancy can maximize the number of resources that are utilized in a cluster by sharing these resources between different groups, teams, or customers. However, boundaries must be placed to avoid problems associated with resource-sharing. On top of that, in a multi-tenant cluster, the number of security policies might gradually grow to the point where a slight misconfiguration could cause major security problems, performance issues, and service disruptions.

Read Post