%term

NetWalker Ransomware - What You Need to Know

May 28, 2020 By Graham Cluley In Tripwire

NetWalker (also known as Mailto) is the name given to a sophisticated family of Windows ransomware that has targeted corporate computer networks, encrypting the files it finds, and demanding that a cryptocurrency payment is made for the safe recovery of the encrypted data.

Read Post

Tripwire

Read more about NetWalker Ransomware - What You Need to Know

Protect Citizens' Data with Netwrix solutions

May 28, 2020 By Netwrix In Netwrix

Are you stressed from having to keep your citizens’ data secure, comply with rigorous government regulations and ensure uninterrupted services? You don’t have to be. Netwrix helps over 1000 public sector organizations just like yours protect their citizen’s data and pass audits with less stress and expense.

View Video

Netwrix

Read more about Protect Citizens' Data with Netwrix solutions

Hiding in plain sight: HTTP request smuggling

May 28, 2020 By Detectify In Detectify

HTTP request smuggling is increasingly exploited by hackers in the wild and in bug bounty programs. This post will explain the HTTP request smuggling attack with remediation tips. HTTP request smuggling is an attack technique that abuses how two HTTP devices send requests between each other (typically a front-end proxy or a HTTP-enabled firewall and a backend server) or chaining multiple servers together with different configurations.

Read Post

Detectify

Read more about Hiding in plain sight: HTTP request smuggling

Detect reverse shell with Falco and Sysdig Secure

May 28, 2020 By Kaizhe Huang In Sysdig

Reverse shell is a way that attackers gain access to a victim’s system. In this article, you’ll learn how this attack works and how you can detect it using Falco, a CNCF project, as well as Sysdig Secure. Sometimes, an application vulnerability can be exploited in a way that allows an attacker to establish a reverse shell connection, which grants them interactive access to the system.

Read Post

Sysdig

Read more about Detect reverse shell with Falco and Sysdig Secure

Ask the Experts: The State of Industrial Cybersecurity

May 28, 2020 By Tripwire In Tripwire

What's the state of industrial cybersecurity today? Tripwire asked cybersecurity professionals to weigh-in on the current threats and challenges of securing critical infrastructure.

View Video

Tripwire

Security

Read more about Ask the Experts: The State of Industrial Cybersecurity

Shining a Light on the Dark Web

May 27, 2020 By Trustwave In Trustwave

Ziv Mador, VP of Security Research at Trustwave SpiderLabs, discusses why understanding the dark web is beneficial to enterprises and how cybercriminals on the dark web operate.

View Video

Trustwave

Security

Read more about Shining a Light on the Dark Web

Veracode Corporate Video

May 27, 2020 By Veracode In Veracode

Veracode is a SaaS-based application security (AppSec) company founded in 2006 by a group of skilled computer hackers. The hackers, including Chris Wysopal, realized that software was very vulnerable to cyberattacks. Over the years, Veracode has established industry-leading technology that helps developers and security professionals find and fix vulnerabilities in their software. Together with Veracode, customers can confidently secure their code.

View Video

Veracode

Read more about Veracode Corporate Video

Veracode Full Solution

May 27, 2020 By Veracode In Veracode

Veracode helps software companies write secure code on time. Veracode is a SaaS-based, or cloud-based, application security (AppSec) solution. It empowers developers to write secure code with real-time feedback in the software development lifecycle (SDLC) and provides security professionals with the tools and analytics to scale their programs and report on key metrics. Veracode’s solution comprises multiple scan types including static analysis (SAST), dynamic analysis (DAST), software composition analysis (SCA), interactive analysis (IAST), and penetration testing.

View Video

Veracode

Read more about Veracode Full Solution

The MITRE ATT&CK Framework: Exfiltration

May 27, 2020 By Travis Smith In Tripwire

Once an attacker has established access and pivoted around to the point of gathering the necessary data, they will work on exfiltration of that data. Not all malware will reach this stage. Ransomware, for example, usually has no interest in exfiltrating data. As with the Collection tactic, there’s little guidance on how to mitigate an attacker exfiltrating data from the enterprise.

Read Post

Tripwire

Read more about The MITRE ATT&CK Framework: Exfiltration

How malware mimics the spread of COVID-19

May 27, 2020 By Katelyn Ilkani In AT&T Cybersecurity

It’s a weird time to be alive. Millions of people globally are living under government lockdowns, as we collectively endure the COVID-19 pandemic. COVID-19 has brought to light some fundamental truths about humanity, including our deep-seated need for social interactions. It has also highlighted how reliant we are on critical infrastructure like our healthcare systems and internet connections, both of which are currently strained.

Read Post