Episode 5 - Detecting DNS Covert Channels in the Wild (Part 1)
In Episode 5 of Corelight Defenders, I, Richard Bejtlich, engage with Corelight's co-founder and chief scientist, Vern Paxson, to delve into the intricate world of DNS covert channels. We explore how adversaries exploit DNS lookups to silently communicate within tightly controlled enterprise environments. Vern explains various methods attackers may use, from encoding data in seemingly benign domain names to manipulating the timing of requests. Our discussion highlights the challenges of detecting these covert channels, especially in the presence of network monitoring.
Account Takeover Prevention for Credit Unions: What Actually Works in 2026
Account takeover prevention for credit unions has reached an inflection point. One concept underpins most modern failures: the timing gap, the period between a member engaging with a scam or impersonation interaction and the moment a security or fraud team becomes aware of risk. During this gap, access is often treated as legitimate even though compromise has already occurred.
Try THIS Prompt to Build a CRUD Note Taking App!
Try THIS Prompt to Build a CRUD Note Taking App!
Cognitive Load and Dashboards in the 2025 SOC
The 2025 year in review reflects on research that shows daily grind and relentless tasks weigh more on the mind than rare major incidents. Flight deck style design offers a model for soc dashboards in 2025, where each instrument should cut cognitive load instead of drowning analysts in flashing warnings and clutter.
How Managed DDoS Protection Keeps Education and EdTech Platforms Resilient
Globally, schools and universities now face over 4,300 cyberattacks per week on average, marking a 40% year-over-year increase and making the education sector a prime target for disruptive DDoS attacks. Most educational institutions operate with lean IT teams responsible for infrastructure, user support, and security. This resource constraint makes it difficult to withstand prolonged or application-layer DDoS attacks that can quickly disrupt learning platforms and administrative systems.
CISO Global's Black Hat News Podcast - Ft. Steve Kass of Highspring - Ep002
Watch the second episode of CISO Global's podcast, "Black Hat News," with host CEO David Jemmett. In this episode, David sits down with Steve Kass, COO of Highspring.
Managed DDoS Protection for Insurance: Why Always-On Defense Is Essential
According to the State of Application Security 2025, web applications faced a sharp rise in hostile traffic, with 4.8 billion attacks blocked and 1.52 billion DDoS incidents affecting nearly 70% of monitored applications. APIs became the primary target, seeing 388% more DDoS attacks per host than websites, signaling a shift toward precision, application-layer disruption.
The CEO's Take: Blind Spots in the Enterprise & Ecosystem
“The best way to compromise a ‘secure organization’ was to go find the things they didn’t know about.” Vulnerability management – within both the enterprise as well as the vendor ecosystem – is largely broken. Join Aleksandr Yampolskiy and HD Moore for this webinar discussing: SecurityScorecard monitors and scores over 12 million companies worldwide.
2025 Year in Review: Building the Future of Security Operations
Arctic Wolf entered 2025 with momentum and a clear focus: advancing security operations in ways that deliver measurable outcomes for organizations facing an increasingly complex threat environment. As the year comes to a close, we’re building on that momentum — strengthening our platform, expanding globally, and laying the foundation for what comes next in 2026.