Tag: Security Boulevard

AI’s growing sophistication signals a future in which networks can be compromised autonomously, and the industry must prepare for this near-term reality.  The post Beware the Rise of the Autonomous Cyber Attacker   appeared first on Security Boulevard. This article has…

Read more →

In our last blog, we discussed how OAuth-based consent phishing attacks have been used to trick users into giving malicious apps the permission to conduct malicious activities via an employee’s account. This attack has been extremely effective due to the…

Read more →

Overview Recently, NSFOCUS CERT detected that the details of Windows LDAP remote code execution vulnerability (CVE-2024-49113) were disclosed. Due to an out-of-bounds read vulnerability in wldap32.dll of Windows LDAP service, an unauthenticated attacker can induce a target server (as an…

Read more →

by Source Defense In a recent high-profile incident covered by Forbes, our Source Defense Research team identified a sophisticated Magecart attack targeting the European Space Agency’s online store. This case study demonstrates why leading organizations worldwide trust Source Defense to…

Read more →

< div class=”text-rich-text w-richtext”> What happens when cutting-edge technology meets the reality of securing modern applications? That’s the question our expert panel tackled in this conversation on how eBPF is reshaping application security. Moderated by Katie Norton of IDC, the…

Read more →

Author/Presenter: Lukas McCullough Our sincere appreciation to DEF CON, and the Authors/Presenters for publishing their erudite DEF CON 32 content. Originating from the conference’s events located at the Las Vegas Convention Center; and via the organizations YouTube channel. Permalink The…

Read more →

<a class=” sqs-block-image-link ” href=”https://xkcd.com/3032/” target=”_blank”> <img alt=”” height=”626″ src=”https://images.squarespace-cdn.com/content/v1/5355d604e4b03c3e9896e131/64136f52-c737-41f2-98f3-79f58dcfc2ae/skew_t_log_p.png?format=1000w” width=”569″ /> </a><figcaption class=”image-caption-wrapper”> via the comic humor & dry wit of Randall Munroe, creator of XKCD Permalink The post Randall Munroe’s XKCD ‘Skew-T Log-P’ appeared first on Security Boulevard.…

Read more →

A WordPress plugin known as PhishWP, has been discovered on Russian cybercrime forums and is being exploited by cybercriminals to steal sensitive data from unsuspecting users.   The post WordPress Plugin Exploited to Turn Legitimate Sites Into Phishing Traps appeared first…

Read more →

China is continuing to target U.S. entities in its efforts regarding Taiwan, including using state-sponsored Flax Typhoon to compromise Guam infrastructure. U.S. are pushing back, with the Treasury Department sanctioning a Chinse cybersecurity firm accused of aiding in some of…

Read more →

Torq has extended the reach of the generative artificial intelligence (AI) capabilities spanning its security operations center (SOC) platform to now include multiple agents. The post Torq Adds Bevy of AI Agents to Automate Cybersecurity Workflows appeared first on Security…

Read more →

DigiCert has made available a Domain Control Validation (DCV) library under an open-source software license as part of a larger effort to enable certificate authorities (CAs) to reduce total costs. The post DigiCert Open Sources Domain Control Validation Software appeared…

Read more →

Four actionable tips that will enable you to enhance the human element of your cybersecurity posture, transforming potential vulnerabilities into robust defenses. The post 4 Tips to Fortify the Human Element in Your Cybersecurity Posture appeared first on Security Boulevard.…

Read more →

Knowing that insider threats and poor cyber hygiene are well-known as some of the worst threat vectors, prioritizing security controls that can keep pace with modern threats is fundamental for all organizations moving forward.  The post Poor Cyber Hygiene can…

Read more →

Many security teams today are drowning in data, struggling to transform extensive visibility into actionable, meaningful insights. The post Drowning in Visibility? Why Cybersecurity Needs to Shift from Visibility to Actionable Insight  appeared first on Security Boulevard. This article has…

Read more →

Online marketplace sales are projected to reach $3.832 trillion in 2024. Every small e-commerce business should capture market share. The post Online Marketplaces: Helping Small Businesses Grow and Stay Cyber Safe  appeared first on Security Boulevard. This article has been…

Read more →

It is with profound sadness that we share the news of the passing of our beloved CEO Amit Yoran on January 3. Amit was not only a visionary leader but also a guiding force who profoundly impacted our industry, our…

Read more →

Why Does Machine Identity Management Matter? Why should advanced machine identity management be a key concern for CISOs? With rapid technological advancements and the increasing dependence on cloud environments, businesses are confronted with a new array of security challenges. One…

Read more →

The Untapped Potential of Machine Identity Management Are you aligning your cybersecurity efforts with the contemporary needs and trends? Organizations often overlook the significance and strategic depth of Non-Human Identities (NHIs) and Secrets Security Management. This lapse can expose businesses,…

Read more →

Why is Effective Secret Storage So Crucial to Cloud Security? In an increasingly digitized world where every information is stored in the digital form, it’s crucial to question: how are these confidential secrets stored, and how do they affect our…

Read more →

OMB Memo M-24-15 published on July 24, 2024 directed GSA and the FedRAMP PMO to streamline the FedRAMP ATO process using NIST OSCAL. By late 2025 or early 2026 (18 months after the issuance of the memo), GSA must ensure…

Read more →