eSecurity Planet

DECEMBER 20, 2023

Attack surface management (ASM) is a relatively new cybersecurity technology that combines elements of vulnerability management and asset discovery with the automation capabilities of breach and attack simulation (BAS) and applies them to an organization’s entire IT environment, from networks to the cloud.

Software 100

Software Risk Architecture Internet 100

eSecurity Planet

OCTOBER 30, 2023

Organizations that don’t patch promptly likely suffer additional stress when the unpatched vulnerabilities are targeted by attackers. Yet with patches available for new vulnerabilities in tools such as VMware vCenter Server and F5 BIG-IP, patching teams need to get moving to avoid being the next victims.

Authentication 89

Authentication Mobile Accountability Software 89

eSecurity Planet

DECEMBER 19, 2023

AI Use Danger As with any emerging technology, many organizations should expect errors and growing pains as teams learn the nuances of applying the technology. In 2024, AI poisoning attacks will become the new software supply chain attacks. Yet these dangers can be offset through training to minimize issues.

Cybersecurity 136

Cybersecurity CISO Government Technology 136

ForAllSecure

OCTOBER 25, 2022

They are expanding, deepening their holds, and increasingly becoming platforms for all sorts of criminal activity. Nonetheless, Lockbit has been particularly aggressive, going after a range of targets including local town governments. I want to say roughly, I think their last report I read was around five days dwell time.

Ransomware 40

Ransomware Encryption Cybercrime Government 40

ForAllSecure

MAY 2, 2023

And you know, like, that was the complaint of the day. Now you can Google most things. For the whole day, I didn't know the guy. It was actually a Child Child Exploitation case. But while it was raging, it was amazing compromised computers, creating a botnet that attacked one target: The White House. Not the same.

Hacking 40

Hacking Media InfoSec Internet 40

SecureList

JULY 29, 2021

Further investigation also revealed scripts used by the actor to gain situational awareness post-exploitation, as well as previous use of the infrastructure to operate Cobalt Strike Beacon. It is likely that APT31 uses them for other implants and ends as well (for example, exploit or malware staging). Russian-speaking activity.

Malware 140

Malware Phishing Password Management Social Engineering 140

CyberSecurity Insiders

DECEMBER 8, 2021

However, with this has come adversaries who have grown more confident with attacking high level targets, such as the Colonial Pipeline and other critical infrastructure operations. They are constantly overcoming systems and evolving with new technological advancements. Cybersecurity needs to be an all-hands company effort.

Data breaches 142

Data breaches Ransomware Government Cybersecurity 142