Anton on Security

DECEMBER 1, 2023

This blog series was written jointly with Amine Besson, Principal Cyber Engineer, Behemoth CyberDefence and one more anonymous collaborator. This intelligence can be derived directly from TI feeds or from red team exercises or threat hunting activities. OK, What does DE expect from Intel?

Engineering 130

Engineering Unstructured Data Cybersecurity Architecture 130

NetSpi Executives

DECEMBER 19, 2023

The debate is as fresh today as ever, especially with the saturation of solutions promising to simplify security stacks. Partners include: Kris Kocinski, Principal, Cloud Engineering at Enduir Jeff Music, CISO at ReliaQuest Harsh Thanki, Security Consultant at SecureLink Middle East 1. The same applies to response controls.

CISO 105

CISO Technology Engineering Artificial Intelligence 105

Malwarebytes

FEBRUARY 1, 2023

When American store Target found a Trojan designed to steal card details on its POS (point-of-sale) systems in 2013, no one expected that the route into its secure environment was its heating, ventilation, and air conditioning (HVAC) supplier, Fazio Mechanical Services. What is a supply chain attack?

Software 77

Software Risk Backups Technology 77

Security Boulevard

DECEMBER 1, 2023

This blog series was written jointly with Amine Besson, Principal Cyber Engineer, Behemoth CyberDefence and one more anonymous collaborator. This intelligence can be derived directly from TI feeds or from red team exercises or threat hunting activities. OK, What does DE expect from Intel?

Engineering 70

Engineering Unstructured Data Cybersecurity Architecture 70

McAfee

SEPTEMBER 9, 2021

Historically, i.e., with CTB locker , the emphasis was on affiliates generating enough installs via a botnet, exploit kits or stolen credentials, but it has shifted in recent years to being able to penetrate and compromise a complete network using a variety of malicious and non-malicious tools. No hidden blogs, just leaks.

Marketing 138

Marketing Ransomware Cybercrime Accountability 138

BH Consulting

AUGUST 10, 2023

This article is not meant as a ‘how to’ but rather a ‘did you know’ and ‘look over here’ guide. I hope it brings you some new knowledge, enhances old knowledge, or even makes you think: ‘hey, I knew that already, but I like how it is synthesised here’. Which framework to use and when? What is the difference?

Cybersecurity 52

Cybersecurity Risk Government Information Security 52

Cisco Security

AUGUST 29, 2022

In part one of this issue of our Black Hat USA NOC (Network Operations Center) blog, you will find: Adapt and Overcome. Port Security, by Ryan MacLennan, Ian Redden and Paul Fiddler. This is the only way a community can have trust and grow, together. Building the Hacker Summer Camp network, by Evan Basta.

Engineering 72

Engineering Wireless Malware DNS 72

Google Security

MARCH 12, 2021

Posted by Stephen Röttger and Artur Janc, Information Security Engineers Three years ago, Spectre changed the way we think about security boundaries on the web. As a result, web browser vendors have been continuously collaborating on approaches intended to harden the platform at scale.

Engineering 145

Engineering Architecture Software Firmware 145

McAfee

AUGUST 24, 2021

Braun SpaceStation , which are designed for use in both adult and pediatric medical facilities. This research was done with support from Culinda – a trusted leader in the medical cyber-security space. For a brief overview please see our summary blog here. What Security Research has Already Been Performed? Background.

Computers and Electronics 145

Computers and Electronics Authentication Software Risk 145

Security Boulevard

APRIL 13, 2022

This can be done using a low-privileged account on any Windows SCCM client. To prevent the attack techniques noted in this blog post, disable the “Allow connection fallback to NTLM” client push installation setting, which is enabled by default in SCCM. Background.

Authentication 52

Authentication Accountability Penetration Testing Software 52

Security Boulevard

JUNE 28, 2022

Stop Using Network Access Accounts! Stop using NAAs and transition to Enhanced HTTP. He also did a ton of novel SCCM research with more on the way! Others in the offensive security space are putting out great work as well, such as Phil Keeble and his MalSCCM project. But we know how things can be misconfigured….

Accountability 57

Accountability Social Engineering Encryption Engineering 57

Security Boulevard

JUNE 20, 2022

Preventing escalation from initial access in your Active Directory (AD) environment to Domain Admins can feel impossible, especially after years of successful red team engagements finding new attack paths each time. While securing your critical assets is challenging, it is not impossible with the right approach.

Accountability 52

Accountability Risk Authentication Passwords 52

Troy Hunt

DECEMBER 4, 2017

For context, the back story to this is that another British pollie (Damian Green) is presently in hot water for allegedly accessing porn on his gov PC and Nadine is implying it could have been someone else on his PC using his identity. As an MP I employ 4 people to deal with the emails and letters constituents send me.

Passwords 205

Passwords Accountability Technology InfoSec 205

Thales Cloud Protection & Licensing

FEBRUARY 28, 2024

How better key management can close cloud security gaps troubling US government madhav Thu, 02/29/2024 - 05:38 In my first blog on this topic I noted a Treasury Department report released last year listed six cloud security challenges financial sector firms face.

Government 77

Government Encryption Marketing Big data 77

Security Boulevard

FEBRUARY 28, 2024

How better key management can close cloud security gaps troubling US government madhav Thu, 02/29/2024 - 05:38 In my first blog on this topic I noted a Treasury Department report released last year listed six cloud security challenges financial sector firms face.

Government 62

Government Encryption Marketing Big data 62

Security Boulevard

JANUARY 2, 2024

Amidst the ever-evolving realm of enterprise security, a new year unfolds, introducing a dynamic array of emerging threats. Clop ransomware’s zero day attack on the file transfer tool MOVEit was the largest data theft of 2023, impacting 83 million individuals and nearly 3,000 organizations.

CISO 103

CISO Social Engineering Architecture Ransomware 103

McAfee

APRIL 21, 2020

This evaluation, conducted in the form of a collaborative attack and defense exercise, is based on ATT&CK®, a freely available and open source knowledge base of adversary tactics and techniques that is widely used by blue teamers (the defenders) to find gaps in visibility, defensive tools, and processes.

CISO 55

CISO Technology Risk Engineering 55