Category: Security Boulevard

In today’s interconnected world, the integrity of software has never been more critical. With the increasing reliance on open-source components and the complexities introduced by containerized applications, ensuring trust in software has become a cornerstone of modern security practices. I…

Read more →

Author/Presenter: Michael Orlitzky Our sincere appreciation to DEF CON, and the Authors/Presenters for publishing their erudite DEF CON 32 content. Originating from the conference’s events located at the Las Vegas Convention Center; and via the organizations YouTube channel. Permalink The…

Read more →

The post Will AI Drive Efficiency and Budget Growth? Risks, Rewards & Reality appeared first on AI-Enhanced Security Automation. The post Will AI Drive Efficiency and Budget Growth? Risks, Rewards & Reality appeared first on Security Boulevard. This article has…

Read more →

Authors/Presenters: Silvia Puglisi, Roger Dingledine Our sincere appreciation to DEF CON, and the Authors/Presenters for publishing their erudite DEF CON 32 content. Originating from the conference’s events located at the Las Vegas Convention Center; and via the organizations YouTube channel.…

Read more →

North Korean hackers stole $1.34 billion in cryptocurrency in 2024, more than half of the $2.2 billion stolen in all crypto hacks, and the attacks by threat groups linked to the rogue nation are becoming more frequent and are happening…

Read more →

Check out the new cloud security requirements for federal agencies. Plus, beware of North Korean government operatives posing as remote IT pros. Also, learn how water plants can protect their HMIs against cyberattacks. And get the latest on the U.S.…

Read more →

Configuration management tools like Ansible, Chef, and Puppet offer various methods for handling secrets, each with inherent trade-offs. The article explores these approaches alongside modern OIDC-based solutions that enable short-lived authentication tokens for automated processes. The post How to Handle…

Read more →

OPSWAT this week revealed it has acquired Fend, Inc. to further extend the reach of its cybersecurity portfolio into the realm of operational technology (OT). The post OPSWAT Acquires Fend to Extend Cybersecurity Reach Into OT Platforms appeared first on…

Read more →

Nisos Insider Threat Indicators Security threats can come from trusted individuals within your organization or partners, contractors, and service providers with authorized access to sensitive systems and data… The post Insider Threat Indicators appeared first on Nisos by Nisos The…

Read more →

With technology front and center in virtually all business processes, it may seem counterintuitive to suggest that today’s greatest cybersecurity risks don’t stem from technology, but from people. It’s widely recognized that people pose the greatest risk to data and security.…

Read more →

Companies can significantly reduce insider threat risks with a suitable data classification strategy that adequately manages and protects sensitive information.  The post How Data Classification Reduces Insider Threats  appeared first on Security Boulevard. This article has been indexed from Security…

Read more →

By adopting zero-trust principles, we can build systems that are not only decentralized but also secure, resilient and future-proof.  The post Zero-Trust in Web3: Redefining Security for Decentralized Systems  appeared first on Security Boulevard. This article has been indexed from…

Read more →

As organizations recognize the immense value and criticality of your data and systems, cybersecurity has become intrinsically linked to business strategy. Chief Information Security Officers (CISOs) are increasingly expected to play a central role in shaping business decisions, assessing and…

Read more →

Author/Presenter: Nick Frichette Our sincere appreciation to DEF CON, and the Authors/Presenters for publishing their erudite DEF CON 32 content. Originating from the conference’s events located at the Las Vegas Convention Center; and via the organizations YouTube channel. Permalink The…

Read more →

The holiday season brings out the best in people, with many feeling inspired to support worthy causes. Unfortunately, it also attracts scammers who prey on this generosity. Here’s how to ensure your donations reach legitimate charities while protecting your personal…

Read more →

Kubernetes, also known as K8s, is a powerful platform for orchestrating containers in complex, distributed environments. Among its many features, Kubernetes has Secrets, which safeguard sensitive information like API keys, passwords, and tokens in a cluster. By separating confidential data…

Read more →

As software development accelerates, the need to identify threats and respond in real time is greater than ever. Detection as Code (DaC) allows you to write, maintain, and automate your threat detection logic as if it were software code, making…

Read more →

Privilege escalation is a critical cybersecurity threat in which a user—usually a malicious actor—gains access to data beyond what their account permissions allow. Attackers can gain this access through human error, stolen credentials, or social engineering.  The post What Is…

Read more →

An Apache Tomcat web server vulnerability has been published, exposing the platform to remote code execution through a race condition failure. The post CVE-2024-50379: A Critical Race Condition in Apache Tomcat appeared first on Security Boulevard. This article has been…

Read more →

As 2024 comes to a close, IT security and business leaders will be braced for another challenging year ahead. In the long-term, economic uncertainty and geopolitical instability seem set to continue, creating the conditions in which threat actors thrive. They…

Read more →