How to fuzz your Java projects using CI Fuzz CLI in Maven
With CI Fuzz CLI, Java developers can integrate fuzz tests into their unit testing setups (e.g. JUnit). In this video, Josh demos how easy this can be done in Maven.
Azure Bicep security fundamentals
Azure Bicep is getting more popular by the day and is rapidly becoming the replacement for Azure Resource Manager (ARM) templates. In this post, I am going to go over some security fundamentals when using Bicep. If you are not familiar with Bicep then I recommend taking a look at the Microsoft Learn documentation to find out more.
Continued Exploitation and Evolution of ProxyShell Vulnerabilities - The Monitor, Issue 22
In August 2021, threat actors started to exploit ProxyShell vulnerabilities in certain Microsoft Exchange Server versions. Today, not only is Kroll seeing actors continue to leverage ProxyShell in larger network intrusions but also now organizations must also be on guard for the so-called ProxyNotShell vulnerabilities, which surfaced in September 2022.
Under the Wing: Stopping Identity-Based Attacks
80% of all attacks are identity-based. In this week’s episode, get an inside look into how Falcon Identity Threat Protection helps you detect identity based attacks and prevent lateral movement.
Threat Actors use Google Ads to Deploy VIDAR Stealer
Kroll has observed threat actors abusing Google Ads to deploy malware masquerading as legitimate downloads or software that has been “cracked” or modified to remove or disable features such as copy protection or adware. As part of our analysis of this trend and threat, we have identified specifically that VIDAR malware, an information-stealing trojan, is using Google Ads to advertise spoofed domains and redirect users to fraudulent sites or malware downloads.
GDPR Compliance for Email Marketing and Cold-Callings
Cold calling and emailing have always been popular and effective techniques of sales and communication with prospective clients. It is a way how brands can reach out to potential clients who may not be aware of your service or product offerings. It is a technique of creating brand awareness and lead generation. However, many customers see these activities as spamming.
Distraction on overdrive: Security in a time of permacrisis
We can probably all agree that we’re living in a state of permacrisis right now. After grappling with Covid-19, the world has been rocked by volatile stock markets, record-setting inflation, and the ongoing conflict in Ukraine. No wonder Collins Dictionary chose permacrisis as its word of the year for 2022.
Invite External Collaborators
Working in separate systems and sending files back and forth while waiting for replies, can hinder productivity. Egnyte breaks down those barriers so you can work closely with clients and business partners by adding them as Standard Users.
How to Deploy Egnyte's Project Templates in 3 Simple Steps to Save Time on Project Set-up
If you're an architect, builder, or engineer, you know that one of the most time-consuming parts of starting a new project is setting up the permissions for each subfolder. You must set the permissions for the same folders over and over again for every new project, which can really start to eat into your billable hours. Fortunately, there's a way to save yourself some time by using project templates.
Featured Post
Into the future: what might cybersecurity look like in 2023?
As we enter into 2023, cybersecurity must be at the forefront of our minds. With hackers becoming increasingly sophisticated in their techniques and the number of endpoints growing exponentially due to the explosion in the number of connected devices, it is critical that over the next 12 months we consolidate our efforts to stay one step ahead of the threats.