π΅οΈββοΈ Does CISA's KEV Catalog Speed Up Remediation? π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Vulnerabilities added to the CISA known exploited vulnerability KEV list do indeed get patched faster, but not fast enough.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Darkreading
Does CISA's KEV Catalog Speed Up Remediation?
Vulnerabilities added to the CISA known exploited vulnerability (KEV) list do indeed get patched faster, but not fast enough.
π΅οΈββοΈ What's the Future Path for CISOs? π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
A panel of former CISOs will lead the closing session of this week's RSA Conference to discuss challenges and opportunities.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Darkreading
What's the Future Path for CISOs?
A panel of former CISOs will lead the closing session of this week's RSA Conference to discuss challenges and opportunities.
π΅οΈββοΈ Chinese Hackers Deployed Backdoor Quintet to Down MITRE π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
MITRE's hackers made use of at least five different Web shells and backdoors as part of their attack chain.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Darkreading
Chinese Hackers Deployed Backdoor Quintet to Down MITRE
MITRE's hackers made use of at least five different Web shells and backdoors as part of their attack chain.
π #RSAC: Two-Thirds of Organizations Failing to Address AI Risks, ISACA Finds π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
An ISACA survey found that just a third of organizations are adequately addressing security, privacy and ethical risks with AI.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
RSAC: Two-Thirds of Organizations Failing to Address AI Risks, ISACA Finds
An ISACA survey found that just a third of organizations are adequately addressing security, privacy and ethical risks with AI
π΅οΈββοΈ LockBit Honcho Faces Sanctions, With Aussie Org Ramifications π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Australian businesses and individuals now face government fines and consequences for paying ransoms or interacting with assets owned by LockBitSupp, aka Dmitry Yuryevich Khoroshev.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Darkreading
Australia Sanctions LockBit Honcho to Cut Off Cash
Australian businesses and individuals now risk fines and other consequences if they pay ransoms to LockBitSupp, aka Dmitry Yuryevich Khoroshev.
π’ APIcalypse Now: Akamai CSO warns of surging attacks and backdoored open source components π’
π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
Apps and APIs bear the brunt as threat actors pivot to living off the land.π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
ITPro
APIcalypse Now: Akamai CSO warns of surging attacks and backdoored open source components
Akamai has warned that apps and APIs are bearing the brunt as threat actors pivot to living off the land
π’ Microsoft security boss warns AI insecurity 'unprecedented' as tech goes mainstream π’
π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
RSA keynote paints a terrifying picture of billionplus GenAI users facing innovative criminal tactics.π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
ITPro
Microsoft security boss warns AI insecurity 'unprecedented' as tech goes mainstream
RSA keynote paints a terrifying picture of billion-plus GenAI users facing innovative criminal tactics
π How to inspire the next generation of scientists | Unlocked 403: Cybersecurity podcast π
π Read more.
π Via "ESET - WeLiveSecurity"
----------
ποΈ Seen on @cibsecurity
As Starmus Earth draws near, we caught up with Dr. Garik Israelian to celebrate the fusion of science and creativity and venture where imagination flourishes and groundbreaking ideas take flight.π Read more.
π Via "ESET - WeLiveSecurity"
----------
ποΈ Seen on @cibsecurity
Welivesecurity
Inspiring the next generation of scientists | Unlocked 403 cybersecurity podcast (ep. 3)
As Starmus Earth draws near, we caught up with Dr. Garik Israelian to venture into the dynamic intersection of science and art, where imagination flourishes and groundbreaking ideas take flight
ποΈ Hackers Exploiting LiteSpeed Cache Bug to Gain Full Control of WordPress Sites ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
A highseverity flaw impacting the LiteSpeed Cache plugin for WordPress is being actively exploited by threat actors to create rogue admin accounts on susceptible websites. The findings come from WPScan, which said that the vulnerability CVE202340000, CVSS score 8.3 has been leveraged to set up bogus admin users with the names wpsuppuser .π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
π1
π¦Ώ Price Drop: This Complete Ethical Hacking Bundle is Now $40 π¦Ώ
π Read more.
π Via "Tech Republic"
----------
ποΈ Seen on @cibsecurity
Get a comprehensive, potentially lucrative ethical hacking education with 18 courses on today's top tools and tech. This bundle is just 39.97 through 512.π Read more.
π Via "Tech Republic"
----------
ποΈ Seen on @cibsecurity
TechRepublic
Price Drop: This Complete Ethical Hacking Bundle is Now $33
Get a comprehensive, potentially lucrative ethical hacking education with 18 courses on today's top tools and tech. This bundle is just $32.97.
π MedStar Health and DocGo Reveal Data Breaches π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
MedStar Health and DocGo have become the latest US healthcare providers to announce cybersecurity incidents.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
MedStar Health and DocGo Reveal Data Breaches
MedStar Health and DocGo have become the latest US healthcare providers to announce cybersecurity incidents
π¦Ώ Combatting Deepfakes in Australia: Content Credentials is the Start π¦Ώ
π Read more.
π Via "Tech Republic"
----------
ποΈ Seen on @cibsecurity
The production of deepfakes is accelerating at more than 1,500 in Australia, forcing organisations to create and adopt standards like Content Credentials.π Read more.
π Via "Tech Republic"
----------
ποΈ Seen on @cibsecurity
TechRepublic
Combatting Deepfakes in Australia: Content Credentials is the Start
Learn how IT pros in Australia can prepare to combat AI deepfakes and why that might include Content Credentials.
π Stephen Khan Receives Infosecurity Europe Hall of Fame Award, to Deliver Keynote on Four Essential Attributes CISOs Need to Succeed π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
The award recognises Khan's outstanding contributions to the field and his role in shaping the cybersecurity industry.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
Stephen Khan Receives Infosecurity Europe Hall of Fame Award, to Deliver Keynote on Four Essential Attributes CISOs Need to Succeed
The award recognises Khan's outstanding contributions to the field and his role in shaping the cybersecurity industry
π A Third of Tech CISOs Are Unhappy With Their Income π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
IANS Research data finds many tech CISOs are concerned about their compensation as salaries stagnate.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
A Third of Tech CISOs Are Unhappy With Their Income
New IANS Research data finds many tech CISOs are concerned about their compensation as salaries stagnate
π¦
Uninterrupted Power Supply (UPS): A Silent Threat to Critical Infrastructure Resilience π¦
π Read more.
π Via "CYBLE"
----------
ποΈ Seen on @cibsecurity
Multiple Vulnerabilities Disclosed in CyberPower UPS Management Software Executive Summary UPS management software is employed by a broad spectrum of users, encompassing data centers, critical manufacturing sectors, healthcare facilities, educational institutions, government agencies, and beyond, to maintain uninterrupted missioncritical operations. The recent disclosure of multiple vulnerabilities within CyberPower PowerPanel Business Software has raised significant concerns regarding the security of critical infrastructure CI sectors. These vulnerabilities pose a serious risk to the integrity and reliability of CI systems, potentially exposing them to exploitation by malicious actors. The Cybersecurity and Infrastructure Security Agency CISA, a key entity within the Unit...π Read more.
π Via "CYBLE"
----------
ποΈ Seen on @cibsecurity
Cyble
Uninterrupted Power Supply (UPS): A Silent Threat To Critical Infrastructure Resilience - Cyble
Critical PowerPanel Business Vulnerabilities put Critical Infrastructure sectors at risk.
ποΈ The Fundamentals of Cloud Security Stress Testing ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Defenders think in lists, attackers think in graphs, said John Lambert from Microsoft, distilling the fundamental difference in mindset between those who defend IT systems and those who try to compromise them. The traditional approach for defenders is to list security gaps directly related to their assets in the network and eliminate as many as possible, starting with the most critical.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ Hijack Loader Malware Employs Process Hollowing, UAC Bypass in Latest Version ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
A newer version of a malware loader called Hijack Loader has been observed incorporating an updated set of antianalysis techniques to fly under the radar. "These enhancements aim to increase the malware's stealthiness, thereby remaining undetected for longer periods of time," Zscaler ThreatLabz researcher Muhammed Irfan V A said in a technical report. "Hijack.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
π’ Medical equipment supplier NRS Healthcare confirms ransomware attack π’
π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
The RansomHub group has threatened to release thousands of NRS Healthcare documents if demands arent met.π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
ITPro
Medical equipment supplier NRS Healthcare confirms ransomware attack
The RansomHub group has threatened to release thousands of NRS Healthcare documents if demands arenβt met
π΅οΈββοΈ Microsoft Will Hold Executives Accountable for Cybersecurity π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
At least a portion of executive compensation going forward will be tied to meeting security goals and metrics.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Darkreading
Microsoft Will Hold Execs Accountable for Cybersecurity
At least a portion of executive compensation going forward will be tied to meeting security goals and metrics.
π΅οΈββοΈ Security Teams & SREs Want the Same Thing: Let's Make It Happen π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Site reliability engineers SREs and security teams are more powerful when they work together, and being able to combine our efforts can make or break our teams' experiences and outputs.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Darkreading
Security Teams & SREs Want the Same Thing: Let's Make It Happen
Site reliability engineers (SREs) and security teams are more powerful when they work together, and being able to combine our efforts can make or break our teams' experiences and outputs.
ποΈ A SaaS Security Challenge: Getting Permissions All in One Place ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Permissions in SaaS platforms like Salesforce, Workday, and Microsoft 365 are remarkably precise. They spell out exactly which users have access to which data sets. The terminology differs between apps, but each users base permission is determined by their role, while additional permissions may be granted based on tasks or projects they are involved with. Layered on top of.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity