Security - CTO Universe

What you need to know about Okta’s security breach

CIO

OCTOBER 25, 2023

On October 20, 2023, Okta Security identified adversarial activity that used a stolen credential to gain access to the company’s support case management system. Unauthorized access to user accounts and sensitive information becomes a significant concern, leading to potential data breaches, financial loss, and unauthorized activity.

Systems Review

Systems Review Software Review Development Team Review Technical Review

Privilege Escalation and Lateral Movement in the Cloud

TechBeacon

MAY 2, 2023

The cloud has redefined the perimeter. And, as a result of the growing adoption of cloud environments, the ways in which security teams protect critical infrastructure and data have fundamentally changed.

Cloud

Cloud Infrastructure Data

Cybersecurity Snapshot: CISA Says Midnight Blizzard Swiped U.S. Gov’t Emails During Microsoft Hack, Tells Fed Agencies To Take Immediate Action

Tenable

APRIL 12, 2024

Plus, a new survey shows cybersecurity pros are guardedly optimistic about AI. And the NSA is sharing best practices for data security. Cybersecurity and Infrastructure Security Agency (CISA) in its Emergency Directive 24-02 , sent to federal civilian agencies last week and made public this week. And much more!

Generative AI

Generative AI Malware Trends Government

Webinars

Peak Performance: Continuous Testing & Evaluation of LLM-Based Applications

MORE WEBINARS

Prevent Lateral Movement With Prisma Cloud

Prisma Clud

MAY 16, 2023

Lateral movement refers to a technique adopted by attackers to maneuver within a network or cloud infrastructure to obtain unauthorized access to sensitive data. This poses a significant threat, as cloud environments grow more intricate and challenging to safeguard against malicious activities.

Cloud

Cloud Azure Policies AWS

Cybersecurity Snapshot: 6 Things That Matter Right Now

Tenable

JULY 15, 2022

Topics that are top of mind for the week ending July 15 | Government cybersecurity efforts tripped by technical debt. Neglect SaaS security at your own risk. Lessons learned about critical infrastructure security. 1 – Don’t downplay SaaS security. Want to learn more about security best practices for SaaS deployments? “

Weak Development Team

Weak Development Team Government Infrastructure Architecture

Tap Into Your Inner Logs for Better Anomaly Detection and Incident Response

Tenable

JANUARY 19, 2024

Tenable Cloud Security enriches cloud activity log data to give you the context you need to quickly respond to and remediate cloud risks. Perhaps of equal concern: 82% of breaches involved data stored in the cloud. Let’s take a real-life cloud scenario. The average total cost of a data breach increased 2.8%

Cloud

Cloud Architecture DevOps Policies

Cloudy with a chance of threats: Advice for mitigating the top cyber threats of 2024

Lacework

FEBRUARY 7, 2024

Securing the cloud is a race against time. As security researchers, we’re constantly analyzing and anticipating cyber threats. In this blog, we’ll explore the motivations of bad actors, the top threats the Lacework Labs team is seeing, and practical ways to lock down your cloud and protect your data.

Weak Development Team

Weak Development Team Malware Cloud Internet

Microsoft Azure Synapse Pwnalytics

Tenable

JUNE 13, 2022

Microsoft states that products and scenarios listed under that heading have “the highest potential impact to customer security.”. These flaws allow a user to escalate privileges to that of the root user within the underlying Apache Spark virtual machines, or to poison the hosts file of all nodes in an Apache Spark pool.

Azure

Azure Technical Review Weak Development Team Analytics

Azure-Specific Policies to Detect Suspicious Operations in the Cloud Environment

Prisma Clud

APRIL 20, 2023

Exploiting privileged operations for malicious intent is one of the biggest threats in the public cloud. Such operations allow bad actors to perform a range of attack techniques, such as lateral movement, credential access, and data exfiltration. Imagine that a privileged user account has been compromised.

Azure

Azure Policies Cloud Spyware

How To Secure Your IT, OT and IoT Assets With an Exposure Management Platform: Complete Visibility with Asset Inventory and Discovery

Tenable

MARCH 20, 2024

Visibility serves as the cornerstone of security, offering organizations the means to monitor, analyze, and safeguard their digital infrastructure effectively. Moreover, real-time visibility enables security teams to proactively mitigate threats before they can escalate into a full-blown crisis.

IoT

IoT How To Network Tools

Fighting Ransomware: Using Ivanti’s Platform to Build a Resilient Zero Trust Security Defense

Ivanti

AUGUST 3, 2021

The malware can contain an exploit kit that automatically executes malicious programmatic code that performs a privilege escalation to the system root device level, where it will grab credentials and attempt to discover unprotected network nodes to infect via lateral movement. There are 4 main types of ransomware.

Malware

Malware Backup Mobile Storage

Back Again: The Mobile Endpoint Is Now the Policy Enforcement Point in the Everywhere Workplace!

Ivanti

APRIL 4, 2021

Several years back before the COVID-19 pandemic hit and the work-from-home shift took hold, we wrote a blog about how the mobile-centric zero trust framework removed the traditional perimeter security controls to protect the corporate enterprise network and all connected endpoints from cybercriminals.

Policies

Policies Mobile Malware Firewall

Evolving Container Security With Linux User Namespaces

Netflix Tech

DECEMBER 23, 2020

In this post, we describe how Titus agents leverage user namespaces to improve the overall security of the Titus agent fleet. Titus is a multi-tenant system, allowing multiple teams and users to run workloads on the system, and ensuring they can all co-exist while still providing guarantees about security and performance.

Linux

Linux Software Review Systems Review Metrics

Daisy Chaining: How Vulnerabilities Can Be Greater Than the Sum of Their Parts

Tenable

JANUARY 21, 2021

With the rise of daisy-chained cyberattacks, security teams must consider the contextual risk of each vulnerability, including its potential to be leveraged in a full system compromise. Faced with limited time and resources, every security team must prioritize threats. There are a number of examples of these “daisy-chained” attacks.

Malware

Malware Software Review Weak Development Team Technical Review

‘K’ is for ‘Komplex’: Key Kubernetes Considerations for Security Teams

Tenable

APRIL 24, 2023

The use of Kubernetes introduces complexity to the modern attack surface and requires a different approach to security than traditional IT infrastructure. Security teams need a base understanding of Kubernetes architecture, configurations and deployment processes to effectively manage risk. Here’s what you need to know.

Software Review

Software Review Policies Systems Review Technical Review

Dealing with MITRE ATT&CK®’s different levels of detail

Lacework

OCTOBER 24, 2023

Editor’s note: This article serves as a summary of the content presented by Cloud Security Researcher Tareq Alkhatib during his session at ATT&CKCON 4.0. ATT&CK serves as a common language to various security teams, including Red Teams, Forensics Engineers, Cyber Threat Intelligence (CTI) Teams, etc.

Malware

Malware Systems Review Media Internet

Mitigate Cloud Breaches With a Holistic Approach to Cloud Identity and Access

Prisma Clud

JULY 3, 2023

Cloud data breaches are on the rise. In this post I’ll walk you through recent cloud threat data from Unit 42’s Cloud Threat Report, Volume 7: Navigating the Expanding Attack Surface. This allowed attackers to perform reconnaissance and move laterally with ease. There’s no hiding from it.

Cloud

Cloud Authentication Azure Policies

Phishing and Ransomware: Connecting the Dots!

Ivanti

APRIL 13, 2021

My cybersecurity newsfeeds are often filled with stories of successful ransomware attacks almost daily against healthcare providers, schools, and government agencies. According to the Verizon Mobile Security Index 2021 (MSI) report, 79% of respondents saw remote working increase in their company. What is phishing?

Artificial Inteligence

Artificial Inteligence Malware Mobile Machine Learning

The Anatomy of an Attack Against a Cloud Supply Pipeline

Palo Alto Networks

OCTOBER 11, 2021

The most recent Unit 42 Cloud Threat Report contains the high-level results of a red team exercise performed against a SaaS customer’s continuous integration and continuous development (CI/CD) pipeline. The organization did not have these security measures enabled on their other 49+ AWS accounts.

Cloud

Cloud Exercises Weak Development Team AWS

Know your enemy:A look at 4 common attack paths

Lacework

DECEMBER 13, 2022

We know cloud environments are incredibly complex. Which means cybersecurity is a race against time and the speed to respond is measured in dollars and cents. As cloud threats grow in volume and sophistication, it is almost impossible for businesses to fix every risk or vulnerability in their cloud environment.

Weak Development Team

Weak Development Team Cloud Internet Compliance

CTO Universe

What you need to know about Okta’s security breach

Privilege Escalation and Lateral Movement in the Cloud

Webinars

Trending Sources

Cybersecurity Snapshot: CISA Says Midnight Blizzard Swiped U.S. Gov’t Emails During Microsoft Hack, Tells Fed Agencies To Take Immediate Action

Webinars

Prevent Lateral Movement With Prisma Cloud

Cybersecurity Snapshot: 6 Things That Matter Right Now

Tap Into Your Inner Logs for Better Anomaly Detection and Incident Response

Cloudy with a chance of threats: Advice for mitigating the top cyber threats of 2024

Microsoft Azure Synapse Pwnalytics

Azure-Specific Policies to Detect Suspicious Operations in the Cloud Environment

How To Secure Your IT, OT and IoT Assets With an Exposure Management Platform: Complete Visibility with Asset Inventory and Discovery

Fighting Ransomware: Using Ivanti’s Platform to Build a Resilient Zero Trust Security Defense

Back Again: The Mobile Endpoint Is Now the Policy Enforcement Point in the Everywhere Workplace!

Evolving Container Security With Linux User Namespaces

Daisy Chaining: How Vulnerabilities Can Be Greater Than the Sum of Their Parts

‘K’ is for ‘Komplex’: Key Kubernetes Considerations for Security Teams

Dealing with MITRE ATT&CK®’s different levels of detail

Mitigate Cloud Breaches With a Holistic Approach to Cloud Identity and Access

Phishing and Ransomware: Connecting the Dots!

The Anatomy of an Attack Against a Cloud Supply Pipeline

Know your enemy:A look at 4 common attack paths

Stay Connected