Cyber Defense Advisors

News

  • by
  • March 28, 2023

Breaking the Mold: Pen Testing Solutions That Challenge the Status Quo

Malicious actors are constantly adapting their tactics, techniques, and procedures (TTPs) to adapt to political, technological, and regulatory changes quickly. A few emerging threats that organizations of all sizes should be aware of include the following: Increased use of Artificial Intelligence and Machine Learning: Malicious actors are increasingly leveraging AI and machine learning to

Cyber News, Cyber Threat Trends
  • by
  • March 28, 2023

IcedID Malware Shifts Focus from Banking Fraud to Ransomware Delivery

Multiple threat actors have been observed using two new variants of the IcedID malware in the wild with more limited functionality that removes functionality related to online banking fraud. IcedID, also known as BokBot, started off as a banking trojan in 2017. It’s also capable of delivering additional malware, including ransomware. “The well-known IcedID version consists of […]

Cyber News, Cyber Threat Trends
  • by
  • March 28, 2023

Pakistan-Origin SideCopy Linked to New Cyberattack on India’s Ministry of Defence

An advanced persistent threat (APT) group that has a track record of targeting India and Afghanistan has been linked to a new phishing campaign that delivers Action RAT. According to Cyble, which attributed the operation to SideCopy, the activity cluster is designed to target the Defence Research and Development Organization (DRDO), the research and development wing of India’s […]

Cyber News, Cyber Threat Trends
  • by
  • March 28, 2023

Data loss from insider events increase despite IRM programs: Report

A vast majority of companies are struggling with data losses from insider events despite having dedicated insider risk management (IRM) programs in place, according to a data exposure report commissioned by Code 42. The study conducted by Vanson Bourne, an independent research firm for technology companies, interviewed 700 cybersecurity professionals, managers, and leaders in the US […]

Cyber News, Cyber Threat Trends
  • by
  • March 28, 2023

Spend on Safety Measures & Call Out Insecure Practices for Safer IoT

IoT risk and security must get more attention from vendors and support from the marketplace.

Cyber News, Cyber Threat Trends

Can zero trust be saved?

Graham Cluley Security News is sponsored this week by the folks at Kolide. Thanks to the great team there for their support! Right now, “Zero Trust” is in serious danger of becoming an empty buzzword. The problem isn’t just that marketers have slapped the Zero Trust label on everything short of breakfast cereal–it’s that for […]

Cyber News, Cyber Threat Trends
  • by
  • March 27, 2023

Cybersecurity vs. Everyone: From Conflict to Collaboration

Don’t assume stakeholders outside security understand your goals and priorities, but consider how you’ll communicate with them to gain their support.

Cyber News, Cyber Threat Trends

DevSecOps puts security in the software cycle

Addressing cybersecurity can be a challenge when the focus is on speed in software development and production life cycles. The post DevSecOps puts security in the software cycle appeared first on TechRepublic.

Cyber News, Cyber Threat Trends
  • by
  • March 26, 2023

OpenAI Reveals Redis Bug Behind ChatGPT User Data Exposure Incident

OpenAI on Friday disclosed that a bug in the Redis open source library was responsible for the exposure of other users’ personal information and chat titles in the upstart’s ChatGPT service earlier this week. The glitch, which came to light on March 20, 2023, enabled certain users to view brief descriptions of other users’ conversations from […]

Cyber News, Cyber Threat Trends