CIO

MARCH 26, 2024

By isolating threats that have evaded detection tools and made it to endpoints, HP Wolf Security gives an insight into the latest techniques used by cybercriminals, equipping security teams with the knowledge to combat emerging threats and improve their security postures. Discover the following highlights uncovered this quarter.

Trends 130

Trends Malware Hotels Windows 130

Martin Fowler

MAY 26, 2020

New installment in “A Guide to Threat Modelling for Developers” Jim looks at how to come up with threats to a system, introducing STRIDE, a simple framework to help teams think about threats.

System 293

System Development How To 293

TechCrunch

NOVEMBER 14, 2023

As recently as yesterday, a Tesla US order agreement page included a threat to sue Cybertruck buyers who resell the vehicle without permission during their first year of ownership. Tesla seems to be walking back the punitive limits it placed on buyers of its yet-to-be-released Cybertrucks.

Transportation 291

Transportation 291

CIO

DECEMBER 20, 2022

One of the biggest cloud security threats your company faces isn’t malicious. According to a recent study , 79% of companies had experienced a cloud data breach in the past 18 months—and 67% of respondents had identified security misconfiguration as the top security threat. In fact, it originates from inside your IT organization.

Cloud 355

Cloud Firewall Storage Policies 355

DevOps.com

MAY 13, 2024

Torrance, California, May 13th, 2024, CyberNewsWire Criminal IP, a renowned Cyber Threat Intelligence (CTI) search engine developed by AI SPERA, has recently signed a technology partnership to exchange threat intelligence data based on domains and potentially on the IP address to protect users by blocking threats to end users.

Engineering 103

Engineering Data Technology Development 103

CIO

DECEMBER 1, 2023

One of the most sophisticated and clandestine threats in this landscape is website spoofing. Bolster Bolster’s solution involves an automated risk monitoring technology that scans the website to identify threats and prevent spoofing attacks. In the past year, over 48% of the mail sent globally was found to be spam.

Strategy 264

Strategy Malware Backup Authentication 264

TechCrunch

JANUARY 4, 2022

Chris Jacob serves as global vice president, Threat Intelligence Engineers at ThreatQuotient and previously held leadership roles at SourceFire, Fidelis Cybersecurity and Webroot. Threat intelligence has been a part of cyber defense processes in the private sector for nearly a decade now. Contributor. Expectations are changing, though.

Study 243

Study Government Training Leadership 243

CIO

JULY 11, 2022

First, 2020 was a full lockdown year where the world operated remotely, giving threat actors a unique landscape against which to launch unprecedented numbers of DDoS attacks. The 2021 Comcast Business DDoS threat report focuses on multi-vector attacks that target Layers 3, 4, and 7 simultaneously. About this report.

Report 242

Report Resources Network Infrastructure 242

TechCrunch

DECEMBER 11, 2023

An apparent early Cybertruck buyer claims they spotted Tesla’s $50,000 legal threat again in an order agreement for the electric pickup. Tesla’s warning to Cybertruck resellers and scalpers appears to be back. On Friday, they posted a screenshot of the clause to the Cybertruck Owners Club forum.

Transportation 230

Transportation 230

Martin Fowler

MAY 27, 2020

New installment in “A Guide to Threat Modelling for Developers” Software teams are incentivised to deliver, and rarely have unlimited bandwidth to go away and address every threat identified. And some of the threats may pose an insignificant risk.

Software 311

Software Development 311

Dell EMC

MAY 2, 2024

Discover how AI-driven CyberSense secures your data against evolving cyber threats.

Data 116

Data 116

Lacework

FEBRUARY 7, 2024

With limited time and resources, companies face a dilemma — should they invest in risk mitigation to build stronger defenses, or focus on threat detection to quickly address breaches? As security researchers, we’re constantly analyzing and anticipating cyber threats. Who’s behind the threats? The truth is that both are crucial.

Weak Development Team 109

Weak Development Team Malware Cloud Internet 109

Martin Fowler

MAY 20, 2020

The first question for threat modeling is "what are you building?" We explore this with low-fi diagrams, understanding the data flows, and identifying the assets.

Data 305

Data 305

Palo Alto Networks

APRIL 4, 2024

Our objective is to present different viewpoints and predictions on how artificial intelligence is impacting the current threat landscape, how Palo Alto Networks protects itself and its customers, as well as implications for the future of cybersecurity. Where am I affected by some new threat intelligence that just came out?

Technical Advisors 79

Technical Advisors Artificial Inteligence Metrics Artificial Intelligence 79

Aqua Security

JANUARY 29, 2024

At the beginning of 2023, Aqua Nautilus researchers uncovered HeadCrab - an advanced threat actor utilizing a state-of-the-art, custom-made malware that compromised 1,200 Redis servers. As you know in the ever-evolving world of cybersecurity, threat actors continually adapt and refine their techniques.

Malware 95

Malware Research 95

Lacework

DECEMBER 18, 2023

As businesses increasingly migrate to the cloud, the importance of robust threat detection in these new environments is paramount. Lacework is at the forefront of developing and implementing strategies to identify and mitigate such threats. This method is crucial in detecting threats from within an organization.

Artificial Inteligence 109

Artificial Inteligence Cloud Analysis Machine Learning 109

Palo Alto Networks

APRIL 17, 2024

Once considered merely an IT issue, ransomware has since evolved into a pervasive threat, affecting individuals, businesses and governments alike. Despite the heightened threat, many organizations still remain vulnerable to ransomware attacks due to exposure on their internet-facing attack surfaces.

Artificial Intelligence 93

Artificial Intelligence Artificial Inteligence Government Technical Review 93

Martin Fowler

MAY 19, 2020

Jim explains how to prepare for a threat modeling session. There are three key questions to focus on: what are you building, what can go wrong, and what are you going to do?

How To 263

How To 263

Palo Alto Networks

OCTOBER 19, 2023

Malicious actors persistently discover new methods to target and exploit organizations, while defenders continuously innovate to counteract and address these threats. However, the present landscape of threats is undergoing a distinct transformation. Here are a few quick pointers: 1. Download our e-book, Secure From Every Angle.

Artificial Inteligence 104

Artificial Inteligence Artificial Intelligence Wireless Generative AI 104

TechCrunch

OCTOBER 19, 2022

Beyond dealing with insects in the field, growers and vendors have to reckon with microscopic threats. Nat4bio makes food-grade coating to protect fruit from microscopic threat by Brian Heater originally published on TechCrunch. This serves two key purposes. First is the aforementioned pesticide requirement. Image Credits: Nat4bio.

Film 246

Film Exercises Course Programming 246

Aqua Security

JULY 5, 2023

In this blog, the first in our two part series, we will unfold the story of this being developed attack infrastructure, speculate on the threat actor and the potential results of such a campaign. We strongly believe that TeamTNT is behind this new campaign.

Cloud 144

Cloud Malware Infrastructure Research 144

TechCrunch

OCTOBER 19, 2021

SOC Prime , a Boston-based early-stage startup that claims to have built the world’s largest threat detection marketplace, has secured $11 million in Series A funding. SOC Prime describes its Detection as Code platform as like “Spotify for cyber threats.” and EU, and security vendors.

Research 207

Research Banking Knowledge Base Organization 207

TechCrunch

DECEMBER 18, 2023

Cybercriminals are becoming more aggressive in their effort to maximize disruption and compel the payment of ransom demands, and now there’s a new extortion tactic in play. In early November, the notorious ALPHV ransomware gang, also known as BlackCat, attempted a first-of-its-kind extortion tactic: weaponizing the U.S.

Government 297

Government Data 297

Xebia

DECEMBER 2, 2022

But from studying what has been working at most organizations, we know that threat modeling is often seen as the gateway drug for teams to think about malicious uses of a system. In a nutshell, threat modeling simply tries to determine: What are we doing? The post Starting with Threat Modeling – part 1 appeared first on Xebia.

Technical Review 130

Technical Review Systems Review Resources Study 130

Lacework

DECEMBER 13, 2023

This uncertainty, coupled with the responsibility of protecting the business, demands a solution that not only detects threats but enables security teams to effectively respond. Cloud-generated data — a vast resource — has largely remained untapped in the realm of threat detection and response.

Artificial Inteligence 120

Artificial Inteligence Data Malware Machine Learning 120

Palo Alto Networks

OCTOBER 17, 2023

They discuss the practice of threat hunting and how we apply it in our SOC. In this interview, we gain valuable insights into why threat hunting is vital, its unique approach at Palo Alto Networks, and how it contributes to keeping the company and our customers safe from cyberattacks. Leeroy responds: “Well not necessarily.

Network 85

Network Firewall Examples Organization 85

Xebia

FEBRUARY 5, 2021

Most threat model approaches (like e.g. STRIDE) assume you have a technical overview like a Data Flow Diagram. An interesting question therefore is; can you threat model when there is no such thing available? The post Threat modeling without a diagram appeared first on Xebia Blog.

Exercises 130

Exercises Data 130

Dell EMC

MARCH 19, 2024

Effective detection and rapid response to cyber threats are key to advancing cybersecurity maturity and minimizing potential damage.

85

85

CIO

SEPTEMBER 22, 2023

The ecosystem of digital payments is a sitting duck. The billions of transactions we conduct online today are protected by what are called public-key encryption technologies. But as quantum computers become more powerful, they will be able to break these cryptographic algorithms.

Security 347

Security Telecommunications Weak Development Team Hardware 347

Palo Alto Networks

SEPTEMBER 14, 2023

Palo Alto Networks Unit 42 illuminates some of the riskiest security observations around attack surface management (ASM) with the 2023 Unit 42 Attack Surface Threat Report. The report contrasts the dynamic nature of cloud environments with the speed at which threat actors are exploiting new vulnerabilities.

Report 129

Report Internet Cloud Network 129

DevOps.com

FEBRUARY 16, 2023

The survey of 4,000 IT leaders at organizations with 1,500 employees was conducted by Foundry, the market research arm of International Data Group (IDG) on behalf of Insight Enterprises, a […] The post Technical Debt is a Major Threat to Innovation appeared first on DevOps.com.

Innovation 165

Innovation Survey Research Groups 165