Code signing certificates are crucial in verifying a software application’s source and assuring users that the code has not been tampered with or maliciously modified. However, like any security measure, code signing is not immune to abuse. Hackers and cybercriminals are constantly finding new ways to exploit vulnerabilities in digital signing processes, making it imperative for developers and organizations to take proactive steps to safeguard their code signing certificates.

In a previous blog post, Hands-on guide: How to scan and block container images to mitigate SBOM attacks, we looked at how Software Supply Chain threats can be identified and assessed. The severity of these vulnerabilities determine the posture or scan result for an image i.e. Pass, Warning or Fail. The next question is “What can we do with these results?”.

Tampa General Hospital is a mid-sized medical facility that caters to locals in the Tampa area. The hospital has 1,040 beds available and serves as a research and academic center, along with offering tertiary care to its patients. The facility is located in Tampa, Florida, and is an essential hospital for maintaining the care of patients throughout the area. The hospital was recently hacked, exposing more than 1.2 million patients that depend on the facility for medical services.

The debate surrounding the integration of best-of-breed versus a single-vendor security platform has been discussed for some years. On one side, we have niche solutions that offer a specialized approach to addressing cybersecurity challenges. On the other side, there are the potential benefits of a consolidated platform that promises seamless interoperability for an exponential improvement of security posture.

We’re thrilled to announce the launch of Private Integrations today, enabling Vanta customers to easily connect their in-house or third-party applications to Vanta’s Trust Management platform. With Private Integrations, in-house systems that need compliance controls can now be managed with the same level of automation as any third-party application available in Vanta’s integration directory.

A new social engineering campaign tracked as “FakeSG” is distributing the NetSupport remote access Trojan (RAT) via phony browser updates, according to researchers at Malwarebytes. The campaign is similar but distinct from the widespread “SocGholish” campaign, which also uses fake browser updates to deliver NetSupport.

“How does Detectify’s External Attack Surface Management platform compare to Penetration testing” or “What I’m really looking for is Penetration testing” are two statements we often hear when talking to prospects. We know that many of you are keen to understand how EASM compares with Penetration testing (Pen testing), so we’re exploring these two methodologies side-by-side.

The current model of the security operations center (SOC) is in need of change. In this post, we’ll discuss why that is the case, what changes are needed, and how a new approach—the SecOps Cloud Platform—can solve challenges for security teams and organizations.

In today’s interconnected digital landscape, cyber threats have become more and more sophisticated and prevalent, posing a huge risk to individuals, organizations, and even nations. To understand and stop these evolving threats effectively, cybersecurity agencies rely on advanced tools and technologies. One such tool is Threat Intelligence Platforms (TIPs), which play a crucial role in enhancing the capabilities of these agencies.

The Amadey Trojan Stealer, an active and prominent malware, first emerged on the cybersecurity landscape in 2018 and has maintained a persistent botnet infrastructure ever since. Several campaigns have used this malware, like the previous Splunk Threat Research blog related to RedLine loader, the multi-stage attack distribution article from McAfee in May 2023 and the campaign where it uses N-day vulnerabilities to deliver Amadey malware noted in March 2023 by DarkTrace.