NSA Guide Helps Firms Protect Against Memory Safety Vulnerabilities
The document describes situations where cyber actors steal sensitive information and other negative impacts
Cyber News, Cyber Threat TrendsUpcoming Speaking Engagements
This is a current list of where and when I am scheduled to speak: I’m speaking at the 24th International Information Security Conference in Madrid, Spain, on November 17, 2022. The list is maintained on this page.
Cyber News, Cyber Threat Trends
- November 14, 2022
New York-barred attorneys required to complete cybersecurity, privacy, and data protection training
New York-barred attorneys will be required to complete one continuing legal education (CLE) credit hour of cybersecurity, privacy, and data protection training as part of their biennial learning requirement beginning July 1, 2023. New York is the first jurisdiction to stipulate this specific requirement as the state aims to emphasize the technical competence duty of […]
Cyber News, Cyber Threat TrendsESET APT Activity Report T2 2022
An overview of the activities of selected APT groups investigated and analyzed by ESET Research in T2 2022 The post ESET APT Activity Report T2 2022 appeared first on WeLiveSecurity
Cyber News, Cyber Threat Trends
- November 14, 2022
How CloudFormation Helps Security
ACM.111 Separate your data and resources from your executable code This is a continuation of my series of posts on Automating Cybersecurity Metrics. The last post provided some suggestions pertaining to how CloudFormation could be improved. How to Fix CloudFormation This post explains how using CloudFormation can help you secure your AWS account. Have you ever […]
Cyber News, Cyber Threat TrendsA Digital Red Cross
The International Committee of the Red Cross wants some digital equivalent to the iconic red cross, to alert would-be hackers that they are accessing a medical network. The emblem wouldn’t provide technical cybersecurity protection to hospitals, Red Cross infrastructure or other medical providers, but it would signal to hackers that a cyberattack on those protected […]
Cyber News, Cyber Threat TrendsUnscrambling Cybersecurity Acronyms – The ABCs of MDR and XDR Security
In the second part of this blog series on Unscrambling Cybersecurity Acronyms, we covered Endpoint Detection and Response (EDR) and Managed Endpoint Detection and Response (MEDR) solutions, which included an overview of the evolution of endpoint security solutions. In this blog, we’ll go over Managed Detection and Response (MDR) and Extended Detection and Response (XDR) […]
Cyber News, Cyber Threat Trends
- November 14, 2022
New “Earth Longzhi” APT Targets Ukraine and Asian Countries with Custom Cobalt Strike Loaders
Entities located in East and Southeast Asia as well as Ukraine have been targeted at least since 2020 by a previously undocumented subgroup of APT41, a prolific Chinese advanced persistent threat (APT). Cybersecurity firm Trend Micro, which christened the espionage crew Earth Longzhi, said the actor’s long-running campaign can be split into two based on the toolset deployed to […]
Cyber News, Cyber Threat Trends
- November 14, 2022
How Cisco keeps its APIs secure throughout the software development process
Software developers know not to reinvent the wheel. So, they lean on reusable micro-services – and their corresponding application programming interfaces (APIs) – as building blocks for application components. “Developers want to focus on the added value they can bring instead of rebuilding things that have great solutions out there already,” says Grace Francisco, vice president […]
Cyber News, Cyber Threat Trends