Palo Alto Networks

FEBRUARY 1, 2024

{{interview_audio_title}} 00:00 00:00 Volume Slider 10s 10s 10s 10s Seek Slider “AI’s Impact in Cybersecurity” is a blog series based on interviews with a variety of experts at Palo Alto Networks and Unit 42, with roles in AI research, product management, consulting, engineering and more.

Generative AI 100

Generative AI Artificial Intelligence Artificial Inteligence Social 100

Aqua Security

JANUARY 11, 2023

According to an article in Security Magazine , 98% of organizations have been negatively impacted by a cybersecurity breach in their supply chain. These findings show a significant threat and a disconnect between a business’s need for security and DevOps's need for agility and speed.

Software Review 97

Software Review Malware Open Source DevOps 97

The Parallax

JANUARY 30, 2018

During a month that’s seen Android malware new and old plague the world’s most popular mobile operating system, Google says its Play Store is becoming more civilized and less like the Wild West. You have a lower probability of being infected by malware from Play than being hit by lightning,” Ahn says. READ MORE ON ANDROID SECURITY.

Malware 184

Malware Open Source Operating System Mobile 184

Xebia

JUNE 12, 2020

But what does that mean in terms of security? The post A Review of Open Source Software Supply Chain Attacks appeared first on Xebia Blog. Likely, a lot of the code you run is not code you wrote. I’ll provide […].

Software Review 130

Software Review Open Source Software Malware 130

Tenable

OCTOBER 6, 2023

A SANS Institute survey found that budgets for ICS/OT security have shrunk, and advises on how to do more with less. In addition, CISA’s Cybersecurity Awareness Month campaign challenges tech vendors to build safer products. For more information about ICS/OT security, check out these Tenable blogs and videos: “ Three U.S.

Budget 65

Budget Report Survey Open Source 65

CIO

MARCH 9, 2023

It’s completely intuitive, allows me to perform most tasks in less than 3 clicks, has all the functions that I need to perform banking on-the-go, is constantly updated with new features, comes with great performance and stability and most of all is very secure.

Weak Development Team 246

Weak Development Team Technical Review Software Review Open Source 246

CIO

JULY 17, 2023

However, this shift requires a thorough understanding of the security implications and how a business can protect its data and applications. As with all technology introductions, it’s important to have clear security policies, tools, processes, and training. Watch on-demand here. How is the cloud being attacked and why?

Cloud 246

Cloud How To Malware Open Source 246

Aqua Security

AUGUST 17, 2020

We have some exciting news about two new features in Tracee , Aqua’s open source container and system tracing utility. Tracee can provide user s with timely insights that previously required special knowledge and tools.?.

Malware 134

Malware Open Source Analysis Tools 134

Tenable

DECEMBER 22, 2023

As we bid adieu to 2023, we highlight major trends that impacted cybersecurity professionals in the past 12 months. Learn how the cyber world changed in areas including artificial intelligence, CNAPP, IAM security, government oversight and OT security. Cybersecurity teams were no exception.

Artificial Inteligence 75

Artificial Inteligence Technical Review Cloud Artificial Intelligence 75

TechCrunch

JULY 27, 2022

Ax Sharma is a security researcher and reporter. His areas of interest include open source software security, malware analysis, data breaches, and scam investigations. Needless to say, the sabotaged versions of node-ipc — now effectively malware — were taken down from the npm registry. Contributor.

Development 281

Development Open Source Malware Software 281

Tenable

OCTOBER 27, 2023

Check out how organizations’ enthusiasm over generative AI is fueling artificial intelligence adoption for cybersecurity. Also, why boards of directors feel more comfortable with cybersecurity. business and IT pros involved in cybersecurity. business and IT pros involved in cybersecurity. And much more!

Artificial Inteligence 63

Artificial Inteligence Artificial Intelligence Technical Review Backup 63

Tenable

DECEMBER 9, 2022

Get the latest on the anniversary of the Log4j crisis; OWASP’s top CI/CD risks; a surge of infostealer malware; the fund transfer fraud — business email compromise connection; and more! . 2 - OWASP’s top 10 CI/CD security risks. 3 - Attackers boost use of infostealer malware.

Software Review 52

Software Review SMB Malware Development Team Review 52

InfoWorld

APRIL 9, 2024

Announced April 9, Black Duck Supply Chain Edition is intended to address a rise in software supply chain attacks targeting vulnerable or maliciously altered open source and third-party components. To read this article in full, please click here

Software Review 81

Software Review Software Open Source Malware 81

Palo Alto Networks

DECEMBER 29, 2022

While it might seem counterintuitive to revisit last week’s newspaper for valuable information, “Those who cannot remember the past are condemned to repeat it.” Stepping back to recollect the security events from the recent past is particularly important, as the risk of repeating past mistakes is particularly high. Beginning on Jan.

Malware 70

Malware Linux Telecommunications Government 70

Netflix Tech

JUNE 12, 2023

Netflix has open-sourced Escrow Buddy, which helps Security and IT teams ensure they have valid FileVault recovery keys for all their Macs in MDM. Securely and centrally escrowing FileVault personal recovery keys is one of many capabilities offered by Mobile Device Management (MDM). Let’s look up the recovery key.”

Open Source 77

Open Source Tools Systems Review Malware 77

InfoWorld

APRIL 9, 2024

Announced April 9, Black Duck Supply Chain Edition is intended to address a rise in software supply chain attacks targeting vulnerable or maliciously altered open source and third-party components. To read this article in full, please click here

Software Review 76

Software Review Software Open Source Malware 76

Tenable

FEBRUARY 9, 2024

critical infrastructure IT and operational technology security teams, listen up. So said cybersecurity agencies from the U.S., Cybersecurity and Infrastructure Security Agency (CISA) said in a statement. Dive into six things that are top of mind for the week ending February 9.

Weak Development Team 66

Weak Development Team Infrastructure Generative AI Artificial Inteligence 66

CIO

AUGUST 25, 2022

This raises new questions about managing and operating these devices in a consistent, reliable, and secure manner. After all, you wouldn’t want your haptic glove to misbehave in the metaverse or your autonomous vehicle sensors to be hijacked by malware. Secure code for the edge. Operating Systems for the edge.

CTO 246

CTO 3D Linux Open Source 246

Tenable

SEPTEMBER 9, 2022

9 | Software supply chain security in the spotlight. Guidance for evaluating IoT security tools. Increasing diversity in cybersecurity. Another look at the major cloud security threats. government stresses software supply chain security. Defining and implementing security test plans. Open design.

Security 52

Security IoT Open Source Linux 52

Tenable

SEPTEMBER 2, 2022

Securing machine learning systems. Shifting security left – meaning, starting security checks earlier in the software development process – has been widely hailed. Most companies expect developers to do security code reviews, but many don’t provide them with security training. And much more! How much do CISOs earn?

Security 52

Security Software Review Artificial Inteligence Technical Review 52

CTOvision

JULY 29, 2015

Emerging Threats - now part of Proofpoint - is a world-leading provider of open source and commercial threat and malware intelligence. Founded in 2003 as a cyber security research community, Emerging Threats has become a de facto standard in network-based malware threat detection.

Open Source 97

Open Source Malware Education Analysis 97

Cloudera

AUGUST 17, 2023

And yet, in an effort to be first to market, many of the ML solutions in these fields have relegated security to an afterthought. Take ChatGPT for example, which only recently reinstated users’ query history after fixing an issue in an open source library that allowed any user to potentially view the queries of others.

Artificial Inteligence 71

Artificial Inteligence Applications ChatGPT Open Source 71

Tenable

JANUARY 12, 2023

A new report from Google outlines a set of evolving threats that cloud security teams should keep an eye on in the new year. In this blog, we take a look at several of the trends discussed in the report, whose insights are aimed at helping cloud security teams increase their knowledge of emerging threats and improve their defense strategies.

Cloud 52

Cloud Backup Malware Google Cloud 52

Tenable

OCTOBER 28, 2022

Get the latest on Microsoft 365 security configurations; effective CISO board presentations; rating MSPs’ cybersecurity preparedness; and hospitals’ Daixin cyberthreat. Cybersecurity and Infrastructure Security Agency (CISA) released a set of recommended configuration baselines for the Microsoft 365 product suite. .

Cloud 52

Cloud Malware Spyware Authentication 52

Tenable

OCTOBER 14, 2022

14 | DevOps team culture is key for supply chain security | SecOps gets more challenging as attack surface expands | Weak credentials hurt cloud security | Incident responders grapple with stress | Security spending grows | And much more! . Topics that are top of mind for the week ending Oct.

Security 52

Security Weak Development Team Retail Software Review 52

Aqua Security

SEPTEMBER 9, 2022

This blog was co-authored by Itamar Maouda Two years ago, the NSA (the United States' National Security Agency) revealed that Drovorub, an advanced Russian malware created by the GRU 85th GTsSS team, had been discovered targeting Linux systems. It has an advanced kernel rootkit that hooks several kernel functions.

Linux 139

Linux Malware Open Source Operating System 139

Xebia

FEBRUARY 17, 2023

Introduction Welcome to part two of the Application Security Testing series. Like I mentioned in the previous blog, during this blog series we are going to look at the different types of Application Security Testing and Software Composition Analysis. This time we will focus on Dynamic Application Security Testing (DAST).

Applications 130

Applications Testing Authentication How To 130

Aqua Security

APRIL 21, 2022

Today, cloud native platforms are increasingly using eBPF-based security technology. Tracee is an open source runtime security and forensics tool for Linux that is powered by eBPF and is more optimized for secure tracing.

Linux 142

Linux Malware Open Source Analysis 142

Altexsoft

FEBRUARY 6, 2021

The rapidly growing volume and sophistication of attacks entail the need for greater preparedness, especially through regular security exercises. Here’s a question related to the field of security: Why do military organizations ceaselessly conduct combat exercises or drills? Security validation is necessary for many compelling reasons.

Exercises 83

Exercises Weak Development Team Testing Malware 83

Tenable

MARCH 19, 2024

Tenable Cloud Security simplifies Kubernetes security by providing any containerized environment with new features including easy custom policy enforcement, enhanced access control, Helm charts scanning and workload protection.

Innovation 66

Innovation Cloud Policies AWS 66

The Parallax

JANUARY 22, 2018

Its success was predicated not on “zero-day” vulnerabilities or new forms of malicious software, but rather on older, known malware delivered via an all-too-familiar method: phishing. The malware included hacked versions of end-to-end encrypted communication apps Signal and WhatsApp.

Malware 170

Malware Spyware Mobile Government 170

Prisma Clud

SEPTEMBER 21, 2023

The traditional network security model has long relied on a simple yet increasingly outdated concept — the secure perimeter. The secure perimeter approach assumes everything inside a network is inherently trustworthy and focuses security efforts on keeping threats outside a defined boundary. million in 2023.

Cloud 105

Cloud Network Policies Machine Learning 105

AWS Machine Learning - AI

JANUARY 26, 2024

Many customers are looking for guidance on how to manage security, privacy, and compliance as they develop generative AI applications. We first delve into the vulnerabilities, threats, and risks that arise from the implementation, deployment, and use of LLM solutions, and provide guidance on how to start innovating with security in mind.

Artificial Inteligence 115

Artificial Inteligence Generative AI Security Applications 115

O'Reilly Media - Ideas

OCTOBER 3, 2023

Also on the legal front: Hashicorp’s switch to a non-open source license has led the OpenTF foundation to build OpenTofu, a fork of Hashicorp’s Terraform product. Meta has released an open source dataset named FACET for testing AI models. While it’s too early to say, OpenTofu has quickly gotten some significant adopters.

Artificial Inteligence 84

Artificial Inteligence Trends Open Source ChatGPT 84

Palo Alto Networks

APRIL 28, 2021

The April 2021 Release for Prisma Cloud Propels Container Security Forward and Extends Our Workload Security Vision. The April 2021 release for Prisma Cloud propels container security forward and extends our workload security vision. Enhanced malware analysis for hosts and containers with WildFire integration.

Cloud 98

Cloud Malware Serverless Compliance 98

Lacework

OCTOBER 3, 2023

Cybersecurity Awareness Month is a time dedicated to increased security awareness and better habits for every one of us. It’s also a stark reminder for industry professionals that preventing bad security outcomes is a full-time, year-round job that requires constant diligence and training.

Development Team Review 67

Development Team Review Technical Review Weak Development Team Software Review 67

Tenable

OCTOBER 27, 2022

Google’s annual DevOps report finds that organizations with a low-blame, collaborative approach have stronger app dev security practices. . For the first time in eight years, the “Accelerate State of DevOps Report” from Google’s DevOps Research and Assessment (DORA) team zooms in on software supply chain security.

Software Review 53

Software Review Software SDLC DevOps 53