Breaking the Vulnerability & Patch Divide
Scott Savenelli explains why his approach to vulnerability and patch management has undergone a dramatic shift to respond to a growing and incessant volume of threats.
Pain in the Supply Chain
The supply chain continues to be a successful vector in high-profile cyber attacks. This article provides some background and guidance on the risk of being compromised by a trusted element of your supply chain.
Weekly Top Ten Cybersecurity Stories – 3.17.2023
Microsoft fixes two zero-days actively exploited by state-sponsored threat actors, Adobe Coldfusion vulnerability exploited in the wild, U.S. federal agency breached using 3-year-old vulnerability, and 8 more stories...
AI Use Cases For The Modern Cybersecurity Professional
Incorporating AI as a tool available to security professionals can lower barriers to complex tasks and improve overall productivity. Here are a few ideas to get started.
March 2023 Patch Tuesday Closes Two Zero-Days Actively Exploited By State-Sponsored Actors
Microsoft's Patch Tuesday for March 2023 fixes more than 80 vulnerabilities, 9 of which are rated critical severity, and 2 zero-days—an Outlook Elevation of Privilege Vulnerability (CVE-2023-23397) and a Windows SmartScreen Security Feature Bypass Vulnerability (CVE-2023-24880).
Administrators are encouraged to apply updates ASAP. If this is not possible, there are some mitigating actions to be taken.
Staying on Top of Phishing, What You Need to Know
Cybercriminals know that an easy route into a business network comes through phishing, whether BEC Attacks, Email-based phishing,…
Revisiting OpenAI
In December, we looked at OpenAI in a couple of ways. We want to understand its capabilities but…
Weekly Top Ten Cybersecurity Stories – 3.10.2023
How to avoid Microsoft OneNote files deploying malware, Google Cloud data exfiltration attacks, Facebook Ads used to target critical infrastructure firms, and 7 more...
What To Do In Response To The Latest LastPass Breach
LastPass have released an update that discloses some additional details about the second of two data breaches in…
Verify Email Origin Authenticity By Implementing DMARC
Implement DMARC to add one more layer of email origin authentication and prevent spoofers from slipping fake emails into your inboxes.