%term

13 spooky security threats that happened in 2021

Oct 29, 2021 By Log360 In ManageEngine

Alan is one of the senior officers of a financial bank in Texas. Alan was looking to buy a Halloween costume and got an email about a sale happening at a store near his neighborhood. He clicked on the email to learn more about the offer. In a few hours, his computer, which had critical high-profile customer files and details got infected by ransomware.

Read Post

ManageEngine

Read more about 13 spooky security threats that happened in 2021

The attack on the Funke Media Group in Germany, 2020

Oct 29, 2021 By ManageEngine In ManageEngine

You can be cyber safe only if you're cyber aware. From useful tips to exciting gift vouchers to be won, there's so much to do!.

View Video

ManageEngine

Read more about The attack on the Funke Media Group in Germany, 2020

Debunked: Is a subdomain takeover 'game over' for companies?

Oct 29, 2021 By Detectify In Detectify

When was the last time you checked DNS configurations for subdomains pointing at services not in use? According to Crowdsource ethical hacker Thomas Chauchefoin, while expired and forgotten subdomains can easily become an entrypoint for an attacker to steal sensitive data, a robust attack surface management programme in place can keep them at bay.

Read Post

Detectify

Read more about Debunked: Is a subdomain takeover 'game over' for companies?

Examining the Anti-Money Laundering (AML) Risks and Red Flags of Crypto Exchanges

Oct 29, 2021 By Kroll In Kroll

Conversation with Claire Simm and James Brennan on AML compliance and regulations for cryptocurrency.

View Video

Kroll

Read more about Examining the Anti-Money Laundering (AML) Risks and Red Flags of Crypto Exchanges

Accelerating the Snyk infrastructure as code vision with the addition of CloudSkiff

Oct 29, 2021 By Guy Podjarny In Snyk

We are thrilled to welcome the team at CloudSkiff to Snyk! Many of you may be more familiar with driftctl, the open source project started by the CloudSkiff team. I wanted to share with you why we’re excited about the addition of this fantastic group of people to Snyk, and our plans for the future of Snyk Infrastructure as Code (Snyk IaC), as well as our commitment to keeping driftctl open source.

Read Post

Snyk

Read more about Accelerating the Snyk infrastructure as code vision with the addition of CloudSkiff

Cybersecurity Awareness Month: Top Trends Impacting Your Applications

Oct 29, 2021 By Hope Goslin In Veracode

It’s always important to take a pause to evaluate your software security – and what better time to do that than during Cybersecurity Awareness Month? To help get you thinking, we’ve compiled a list of cybersecurity trends that are happening now and will likely continue throughout the next several years. 1. Ubiquitous Connectivity: We are quickly moving to a world where everyone and everything is connected. Most software is internet-connected, as are most devices.

Read Post

Veracode

Read more about Cybersecurity Awareness Month: Top Trends Impacting Your Applications

The Callback is Coming From Inside the House

Oct 29, 2021 By Corelight In Corelight

This bone-chilling webinar will cover: A spine-tingling hands-on-keyboard scenario of a motivated and capable insider threat working with the ghoulish adversary. Use of realistic and terrifying exploits and offensive security tools to simulate adversary TTPs, and how organizations are able to hunt for them. A practical threat hunting session demonstrating true behavioral hunting that walks participants through not only how the attack was carried out, but also how they can hunt for this insidious behavior in their own environments.

View Video

Corelight

Read more about The Callback is Coming From Inside the House

Software Composition Analysis Mitigates Systemic Risk in the Popular NPM Repository

Oct 29, 2021 By Hope Goslin In Veracode

Chris Wysopal, Veracode Chief Technology Officer and Co-Founder, recently sat down to discuss the open source supply chain attack on the popular npm repository. Below is the transcript and corresponding video of his reaction. Just a few days ago, we saw a classic open source supply chain attack where someone modified a JavaScript library, UA-Parser-JS, which is in the npm repository.

Read Post

Veracode

Read more about Software Composition Analysis Mitigates Systemic Risk in the Popular NPM Repository

PAM: A Modern Approach

Oct 29, 2021 By Netwrix In Netwrix

This short video explains how to thwart cyberattacks by eliminating privileged accounts using a modern approach to privileged access management. To learn more about managing privileged accounts, visit netwrix.com/pam. Traditionally, businesses have maintained dozens or even hundreds of privileged accounts to support critical IT administration activities. These powerful credentials pose a major security risk because they can be stolen by attackers or misused by their owners, either unintentionally or intentionally.

View Video

Netwrix

Read more about PAM: A Modern Approach

5 Signs You Have the Remote Access VPN Blues

Oct 29, 2021 By Tsailing Merrem In Netskope

As the pandemic wears on, and return to work plans continue to shift and morph, there’s really never been a better time to re-evaluate how your organization is handling remote access. Your hastily put-together VPN setup may have gotten the job done in the early days of lockdown, but is it really ready to protect a hybrid workforce that’s now used to flexibility and choice? Here are five signs that it might be time to reconsider your remote access VPN.

Read Post