Cyber Defense Advisors

Cyber News

  • by
  • November 15, 2022

Stop Writing Paper Policies

ACM.112 A look at how effective your PDF and Word cybersecurity policy documents are in a cloud environment — and how to fix it This is a continuation of my series on Automating Cybersecurity Metrics. OK I’m being a little dramatic. We are not going to do away with all forms of traditional documentation, but please consider the […]

Cyber News, Cyber Threat Trends

Remote Code Execution Discovered in Spotify’s Backstage

Spotify ranked the vulnerability as critical, with a CVSS score of 9.8

Cyber News, Cyber Threat Trends
  • by
  • November 15, 2022

Top Zeus Botnet Suspect “Tank” Arrested in Geneva

Vyacheslav “Tank” Penchukov, the accused 40-year-old Ukrainian leader of a prolific cybercriminal group that stole tens of millions of dollars from small to mid-sized businesses in the United States and Europe, has been arrested in Switzerland, according to multiple sources. Wanted Ukrainian cybercrime suspect Vyacheslav “Tank” Penchukov (right) was arrested in Geneva, Switzerland. Tank was […]

Cyber News, Cyber Threat Trends
  • by
  • November 15, 2022

Meta’s new kill chain model tackles online threats

In April 2014, Lockheed Martin revolutionized the cyber defense business by publishing a seminal white paper Intelligence-Driven Computer Network Defense Informed by Analysis of Adversary Campaigns and Intrusion Kill Chains. This document sparked a new wave of thinking about digital adversaries, specifically, nation-state advanced persistent threat groups (APTs). The authors of the paper argued that […]

Cyber News, Cyber Threat Trends
  • by
  • November 15, 2022

Deep Packet Inspection vs. Metadata Analysis of Network Detection & Response (NDR) Solutions

Today, most Network Detection and Response (NDR) solutions rely on traffic mirroring and Deep Packet Inspection (DPI). Traffic mirroring is typically deployed on a single-core switch to provide a copy of the network traffic to a sensor that uses DPI to thoroughly analyze the payload. While this approach provides detailed analysis, it requires large amounts […]

Cyber News, Cyber Threat Trends
  • by
  • November 15, 2022

Global 2000 companies failing to adopt key domain security measures

Forbes Global 2000 companies are failing to adopt key domain security measures, exposing them to significant security risks, according to CSC’s Domain Security Report 2022. The enterprise-class domain registrar and Domain Name System (DNS) threats mitigator found that 75% of Global 2000s have implemented fewer than half of all domain security measures with Domain-based Message […]

Cyber News, Cyber Threat Trends
  • by
  • November 15, 2022

From Austin to Sydney: How to Work From Anywhere

SaaS Security Marketing Manager Laura O’Melia has always been interested in living and working internationally. After living in Austin, Texas for twenty years, O’Melia was ready for a new adventure and decided to move to Sydney, Australia with the support and encouragement of her manager and Cisco. The pandemic delayed her plans, but now that […]

Cyber News, Cyber Threat Trends
  • by
  • November 15, 2022

Kenna.VM Premier: Accelerate Vulnerability Management with Cisco Talos Intel and Remediation Analytics

New level unlocked. The next step for Kenna.VM users who are maturing their risk-based vulnerability management program is Kenna.VM Premier—and it’s live.  The Cisco Kenna team is excited to release a new tier of the Kenna Security platform designed specifically for customers or prospects that have reached a point of maturity in which they can […]

Cyber News, Cyber Threat Trends

Another Event-Related Spyware App

Last month, we were warned not to install Qatar’s World Cup app because it was spyware. This month, it’s Egypt’s COP27 Summit app: The app is being promoted as a tool to help attendees navigate the event. But it risks giving the Egyptian government permission to read users’ emails and messages. Even messages shared via […]

Cyber News, Cyber Threat Trends