Cyber Defense Advisors

News

RCE on Log4j Among Top CVEs Exploited By Chinese-Backed Hackers

In a joint advisory, three US agencies, NSA, CISA and FBI, warned about Chinese threat actors

Cyber News

LofyGang Distributed ~200 Malicious NPM Packages to Steal Credit Card Data

Multiple campaigns that distributed trojanized and typosquatted packages on the NPM open source repository have been identified as the work of a single threat actor dubbed LofyGang. Checkmarx said it discovered 199 rogue packages totaling thousands of installations, with the group operating for over a year with the goal of stealing credit card data as […]

Cyber News

Network Design: Serverless Applications

ACM.73 Thinking through serverless network architecture This is a continuation of my series of posts on Automating Cybersecurity Metrics. I covered network access for developers for our batch job development and deployment in the last post. Network Design: Developer Network In this post I am going to cover some considerations for serverless application networking. Earlier in […]

Cyber News

The essentials of GRC and cybersecurity — How they empower each other

Understanding the connection between GRC and cybersecurity When talking about cybersecurity, Governance, Risk, and Compliance (GRC) is often considered the least exciting part of business protection. However, its importance can’t be ignored, and this is why.  While cybersecurity focuses on the technical side of protecting systems, networks, devices, and data, GRC is the tool that […]

Cyber News

CyberRatings.org Invites Industry Participation in Forthcoming Enterprise Firewall and Data Center Firewall Tests

Test methodologies published today, and their scope includes security effectiveness, performance, stability and reliability, and total cost of ownership.

Cyber News

Mobile Ecosystem Forum CEO talks privacy, security and the future of the mobile industry

Dario Betti talks to TechRepublic about the stir-shaken concept, investing in the right tech and other issues. The post Mobile Ecosystem Forum CEO talks privacy, security and the future of the mobile industry appeared first on TechRepublic.

Cyber News

Facebook Detects 400 Android and iOS Apps Stealing Users Log-in Credentials

Meta Platforms on Friday disclosed that it had identified over 400 malicious apps on Android and iOS that it said targeted online users with the goal of stealing their Facebook login information. “These apps were listed on the Google Play Store and Apple’s App Store and disguised as photo editors, games, VPN services, business apps, […]

Cyber News

We Can Save Security Teams From Crushing Workloads. Will We?

Today, the processing of mountain-high stacks of alarms is considered “security.” That system is failing customers and the cybersecurity workforce.

Cyber News