April 2023 Archives

Weekly Top Ten Cybersecurity Stories – 4.28.2023

Critical vulnerabilities in PaperCut print management software, Cisco XSS zero-day in server management tool, new Apache Superset vulnerability, and 7 more stories...

April 28, 2023 14:10 GMT

ChatGPT From A Pen Tester’s Point Of View

ChatGPT has significant potential to transform the landscape of penetration testing by playing the role of comprehensive assistant, but this powerful resource is not without risk.

April 27, 2023 16:07 GMT

Weekly Top Ten Cybersecurity Stories – 4.21.2023

Fortra shares findings on GoAnywhere MFT zero-day attacks, Google Chrome hit by another zero-day attack, Docker privilege escalation vulnerability, and 7 more...

April 21, 2023 14:37 GMT

The Future Of Endpoint Monitoring: SIEM, EDR, XDR, and Data Collectors

The endpoint monitoring space has evolved through a number of stages to arrive where it currently is today. Novacoast's Adam Gray shares his perspective on how the space is moving forward but in many ways is still spinning its wheels.

April 20, 2023 13:39 GMT

The Future of Identity

Identity and Access Management veteran Jim Gerken of Novacoast provides some insight on the past, present, and future of this cornerstone space in cybersecurity.

April 20, 2023 13:18 GMT

Weekly Top Ten Cybersecurity Stories – 4.14.2023

Microsoft Patch Tuesday rolls out fixes for 97 flaws, Nokoyawa ransomware attacks with Windows Zero-Day, detecting BlackLotus, and 7 more stories in cybersecurity!

April 14, 2023 15:24 GMT

AI Danger: Aligning Cyber and Policy Experts

For cybersecurity experts and policymakers, the GPT-4 System Card is one of the most important documents to be released since the initial announcement of ChatGPT.

April 12, 2023 14:01 GMT

Defending Against Cobalt Strike-Based Malware In Your Environment

While the comprehensive attack framework Cobalt Strike has proven invaluable to legitimate red teams and pen test efforts…

April 11, 2023 20:38 GMT

FTC Safeguards Rule Changes 2023 | What You Need to Know

The FTC has announced changes to its Safeguards Rule that go into effect this June to enhance requirements for information security programs.

April 10, 2023 20:19 GMT

Weekly Top Ten Cybersecurity Stories – 4.7.2023

Defender's guide to the 3CX supply chain attack, Western Digital network breach, IRS eFile.com serving JS malware, and 7 more stories...

April 10, 2023 14:41 GMT

Hand-Picked Top-Read Stories

Palo Alto Recommends Urgent Mitigation For Authentication Bypass Vulnerability in PAN-OS

Weekly Top 10: 11.18.2024: Microsoft Exchange Adds Warning to Emails Abusing Spoofing Flaw; Evasive ZIP Concatenation: Trojan Targets Windows Users; Microsoft November 2024 Patch Tuesday Fixes 4 Zero-Days, 89 Flaws, and More.

What Happened To The Internet Archive?

Trending Tags

Month: April 2023

Weekly Top Ten Cybersecurity Stories – 4.28.2023

ChatGPT From A Pen Tester’s Point Of View

Weekly Top Ten Cybersecurity Stories – 4.21.2023

The Future Of Endpoint Monitoring: SIEM, EDR, XDR, and Data Collectors

The Future of Identity

Weekly Top Ten Cybersecurity Stories – 4.14.2023

AI Danger: Aligning Cyber and Policy Experts

Defending Against Cobalt Strike-Based Malware In Your Environment

FTC Safeguards Rule Changes 2023 | What You Need to Know

Weekly Top Ten Cybersecurity Stories – 4.7.2023

Threat Advisories

Palo Alto Recommends Urgent Mitigation For Authentication Bypass Vulnerability in PAN-OS

Weekly Top 10: 11.18.2024: Microsoft Exchange Adds Warning to Emails Abusing Spoofing Flaw; Evasive ZIP Concatenation: Trojan Targets Windows Users; Microsoft November 2024 Patch Tuesday Fixes 4 Zero-Days, 89 Flaws, and More.

Weekly Top 10: 11.11.2024: Veeam Backup Exploit Used by Frag Ransomware; North Korean Hackers Use macOS Malware to Steal Crypto; Palo Alto PAN-OS May be Vulnerable to RCE, and More.

Weekly Top 10: 11.04.2024: Android Malware ‘FakeCall’ Hijacks Outgoing Calls; PTZ Cameras Being Targeted Using Two Zero-Days; Hacker Group TeamTNT Targets Docker Environments, and More.

Weekly Top 10: 10.28.2024: Severe Flaws in E2EE Cloud Storage Platforms Used by Millions; ClickFix Tactic: The Phantom Meet; Firm Hacked After Accidentally Hiring North Korean Cyber Criminal, and More.

Education

Protecting Microsoft Teams From Data Exfiltration – A Tactical DLP Rule

Anatomy of a Data Breach

OpenAI Cybersecurity Research

Breach Report: Healthcare

Analysis of GalComm Chrome Extension Malware