It is never too late to start a career in cybersecurity — this may sound cliché, but it holds a lot of truth. If you are passionate about the topic and are ready to put in the work to acquire the skills and knowledge needed, anyone, regardless of educational background, can break into cybersecurity. At […]
Cyber NewsThis is a story of one piece of what is probably a complex employment scam. Basically, real programmers are having their resumes copied and co-opted by scammers, who apply for jobs (or, I suppose, get recruited from various job sites), then hire other people with Western looks and language skills are to impersonate those first […]
Cyber NewsSchoenbohm accused of having maintained contacts with people involved with Russian security services
Cyber NewsThis blog was written by an independent guest blogger. Welcome to the final episode in our blog series focused on Mobile Endpoint Security. The first two episodes detailed the protections necessary to secure data accessed by remote workers (Endpoint security and remote work) and best practices for combating the threat of ransomware 5 ways to […]
Cyber NewsSome of the malicious apps are able to evade detection and continue to make it onto legitimate app stores
Cyber NewsACM.75 An alternative to NATs and Internet Gateways This is a continuation of my series on Automating Cybersecurity Metrics. We looked at adding a VPC configuration for our Lambda function in an earlier post in this series where I demonstrated how a Lambda function that had Internet access may be abused. I also mentioned two options […]
Cyber NewsACM.74 How these crucial services work by default and what happens if you want to use your own DNS and NTP servers on AWS This is a continuation of my series of posts on Automating Cybersecurity Metrics. It’s always DNS… Everything in AWS needs to access DNS or it will break. And I mean EVERYTHING. When we […]
Cyber NewsAbout 1 in 5 phishing email messages reach workers’ inboxes, as attackers get better at dodging Microsoft’s platform defenses and defenders run into processing limitations.
Cyber NewsA severe remote code execution vulnerability in Zimbra’s enterprise collaboration software and email platform is being actively exploited, with no patch currently available to remediate the issue. The shortcoming, assigned CVE-2022-41352, carries a critical-severity rating of CVSS 9.8, providing a pathway for attackers to upload arbitrary files and carry out malicious actions on affected
Cyber News