Weekly Cyber Security News 24/08/2023
A selection of this week’s more interesting vulnerability disclosures and cyber security news. Well this is unfortunate…. Like one last year sometime I hope they do eventually get back up and running.
Security | Threat Detection | Cyberattacks | DevSecOps | Compliance
The Latest Cybersecurity News & Insights From Around The World
API Security Fundamentals
API attacks have risen 400% in the last six months, as per Security Boulevard. This has caused 59% of organizations to delay the release of new applications due to concerns about API security. As industries look to integrate with third-party software more often to improve their business operations, the security of OpenAPIs has become critical.
Demystifying the Dark Web and DarkNets, Part III - Accessing Dark Marketplaces Anonymously:
Without international laws in every country that are designed to protect individual data privacy as vehemently as does the General Data Protection Regulation (GDPR), many have turned to DarkNets and cryptocurrencies for their privacy protections – especially in the U.S. Is it surprising that the Washington Post, for example, has a dark web presence?
New at Nightfall: August '23 Product Updates
From our groundbreaking GenAI product launch to our enhanced console experience, we’re excited to share the most recent Nightfall product updates.
Top 5 VS Code extensions for security
Developing quality software applications can be arduous, as many moving parts must come together to create a working solution. That’s why developers need all the help and convenience they can get, especially when securing their applications. Visual Studio Code (VS Code) is one of the most popular open source code editors for various reasons.
Using JLink to create smaller Docker images for your Spring Boot Java application
Containers bring new flexibility and agility to software development and deployment. However, they also introduce a new attack surface that malicious actors can exploit. A compromised container can give an attacker access to other containers and even the host system. Smaller images that contain fewer artifacts are already a great help in achieving a smaller attack surface.
Introducing Infra as Code Security in The GitGuardian Platform
We are proud to introduce Infra as Code Security in The GitGuardian Platform. GitGuardian can now automatically scan connected GitHub or GitLab repositories for IaC template files like Terraform and CloudFormation and alert you about any misconfigurations affecting your AWS, Azure, and GCP deployments, your Kubernetes clusters, and Docker containers.
Is Cybersecurity as a Service (CSaaS) the answer: Move faster | Do more
The economy is on the minds of business leaders. C-suites recognize survival depends upon the ability to safeguard systems and information. They must redesign for resilience, mitigate risk, strategically deploy assets and investments, and assign accountability. Do more with Less is the ongoing mantra across industries in technology and cyberspace.
UK Police Officer Warned Criminal Friend About Top-Secret Operation Targeting EncroChat Platform
Read also: Interpol disrupts thousands of cyber networks responsible for $40M in losses, Two founders of Tornado Cash crypto mixer accused of money laundering in the US, and more.
Duolingo Users Should Be on the Lookout for Targeted Phishing Attacks
Users of the language learning app Duolingo should be wary of targeted phishing attacks following a recent data leak, according to Anthony Spadafora at Tom’s Guide. Criminals scraped the names and email addresses of 2.6 million Duolingo users earlier this year, and are now selling the entire dataset on underground forums for approximately $2.13.