Category: Security Boulevard

By: Brian Dean, Senior Security Consultant, QSA Change is in the Air  2024 is almost here, and that means PCI DSS 4.0 will soon go into effect. The newest version will have some mandatory controls on March 31, 2024, for…

Read more →

Approov stands at the forefront of mobile cybersecurity: Our expansive customer base, ongoing research initiatives and the insights we collect from our live threat metrics, give us unique visibility into trends in mobile security. Based on this data, we wanted…

Read more →

What is Zero Trust Security? Zero-trust security is not a specific technology or product, but a security model based on the concept that “All entities are untrusted”. Forrester defines zero trust as “Zero Trust is an information security model that…

Read more →

<a class=” sqs-block-image-link ” href=”https://xkcd.com/2863/”> <img alt=”” height=”239″ src=”https://images.squarespace-cdn.com/content/v1/5355d604e4b03c3e9896e131/68183986-2e78-4455-a2ec-959a0d4b1fe1/space_typography.png?format=1000w” width=”740″ /> </a><figcaption class=”image-caption-wrapper”> via the comic artistry and dry wit of Randall Munroe, creator of XKCD! Permalink The post Randall Munroe’s XKCD ‘Space Typography’ appeared first on Security Boulevard. This…

Read more →

Taking a Proactive Approach to Mitigating Ransomware Part 1: You Can’t Neglect the Application Layer ltabo Wed, 12/06/2023 – 18:42 < div class=”field field–name-body field–type-text-with-summary field–label-hidden field__item”> Ransomware continues to dominate cybersecurity news. The proliferation of attacks – 66% of…

Read more →

The personal digital well-being of executives is increasingly under threat. BlackCloak understands this evolving landscape and has developed a comprehensive approach to safeguard executives. Let’s discuss how BlackCloak collaborates with security leadership to understand their concerns, measures executive cyber risk…

Read more →

Many thanks to DEF CON 31 for publishing their terrific DefCon Conference 31 presenters content. Originating from the conference events at Caesars Forum, Flamingo, Harrah’s and Linq in Las Vegas, Nevada; via the organizations YouTube channel. Permalink The post DEF…

Read more →

A security flaw in Adobe’s ColdFusion application development tool that was patched in March continues to be a headache for organizations running unpatched versions of the product. This week, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) said two public-facing…

Read more →

Micro$oft Window$ E$U: From October 2025, Microsoft will start charging for security updates to Windows 10. The post Use Windows 10? You Must PAY for Security appeared first on Security Boulevard. This article has been indexed from Security Boulevard Read…

Read more →

Application mapping can have many advantages for organizations managing complex IT infrastructure, not the least of which is security. The post 5 Security Benefits of Application Mapping appeared first on Security Boulevard. This article has been indexed from Security Boulevard…

Read more →

Hackers linked to Russia’s military intelligence unit exploited previously patched Microsoft vulnerabilities in a massive phishing campaign against U.S. and European organizations in such vectors as government, aerospace, and finance across North America and Europe. The advanced persistent threat (APT)…

Read more →

A cyberattack’s impact chain starts with the initial breach and frequently has no clear endpoint. But it’s important to understand every ‘link’ to mitigate the damage. The post Understanding Each Link of the Cyberattack Impact Chain appeared first on Security…

Read more →

Security teams are wasting time and resources normalizing data to store and analyze it in a separate platform instead of relying on the same data IT teams use to manage operations. The post Survey Surfaces Wasted Efforts Collecting Cybersecurity Data…

Read more →

By Max Gannon QR codes in the phishing threat landscape are a major topic of interest and worth paying particularly close attention to, despite how insignificant they were earlier this year. QR codes change the attack vector and enable threat…

Read more →

In the ever-expanding digital landscape, businesses continually embrace many technologies to stay competitive and agile. However, this rapid adoption often leads to a complex web of disparate tools, giving rise to what is known as technology sprawl. As organizations grapple…

Read more →

Small to Medium Enterprises (SMEs) are vital for innovation and economic growth, and their role in larger supply chains makes them an attractive gateway for hackers. After all, you’re never too small to be a target for cyberattacks.   Over 50%…

Read more →

In the realm of cybersecurity, a recent study has brought to light a series of Hello Authentication vulnerabilities that could compromise the Windows Hello authentication on popular laptop models, including Dell Inspiron 15, Lenovo ThinkPad T14, and Microsoft Surface Pro…

Read more →

Cybersecurity researchers are warning of Kubernetes security issues amid the exposure of configuration secrets. It has been deemed that such exposure could put organizations at risk of supply chain attacks.  Researchers believe that such attacks could be orchestrated using Kubernetes…

Read more →

In the realm of Linux system management, task automation stands as a cornerstone, a trusted ally for administrators seeking to navigate the complex landscape of server maintenance. Within this intricate tapestry, CentOS 7 emerges as a stalwart choice, known for…

Read more →

Over the last 6 months, DataDome has reduced the size of our client-side JavaScript tag by 53% and total blocking time by 91%, reducing its impact on our customers’ websites. The post How to Improve Performance with Client-Side JavaScript Tag…

Read more →