How to Provide a Secure Cloud Environment for Remote Workers
The shift to a global remote workforce is demonstrating just how difficult securing a cloud environment can be. This is especially true for organizations that host their infrastructure on-premises.
To address these challenges, many companies are migrating to the cloud, leveraging cloud service providers (CSPs) such as Amazon Web Services, Microsoft Azure, Google Cloud Platform, and Oracle Cloud. These public cloud providers offer cost-effective, scalable cloud computing solutions.
Introducing Hybrid Hunter, integrating Zeek (Bro) logs into IBM QRadar
The topic of this blog post is the introduction of the Hybrid Hunter open source security information and event management (SIEM) and threat hunter platform, and the integration of the included Zeek (Bro) logs into IBM QRadar, by creating a custom Device Support Module (DSM). The versions used for the presentation are Hybrid Hunter 2.1.0 RC2 and QRadar 7.3.2.
Microsoft Suspended 18 Azure Active Directory Apps That Operated by the Chinese APT Hackers
Recently, Microsoft has suspended 18 Azure active directory apps that have been operated by the Chinese APT hackers. These hackers are working on behalf of the Chinese government, and they received all their tools in the cloud, which has put all the employees of Microsoft quite busy.
In Pursuit of a Gestalt Visualization: Merging MITRE ATT&CK® for Enterprise and ICS to Communicate Adversary Behaviors
Understanding the increasingly complex threats faced by industrial and critical infrastructure organizations is not a simple task. As high-skilled threat actors continue to learn about the unique nuances of operational technology (OT) and industrial control systems (ICS), we increasingly observe attackers exploring a diversity of methods to reach their goals.
Instagram App Vulnerability Let Hackers to Take Control of Your Account Using Malformed Picture
Researchers detected a critical RCE Instagram vulnerability that allows the threat actors to take control of your Instagram account by sending a simple images to the victim via email, WhatsApp or other media exchange platforms. When the victim opens the Instagram app, the exploitation takes place.
Covid-19 Cyberattack Analysis
Based on extensive data collected across Cynet clients, this report details changes in cyberattacks observed across North America and Europe since the beginning of the Covid-19 pandemic.
Recorded Future Predict 2020: Intelligence to Disrupt the Status Quo
The Recorded Future Security Intelligence Platform dynamically categorizes, links, and analyzes intelligence from an unrivaled range and variety of sources in real time — and it instantly integrates with existing security tools. Start easily consuming insights and proactively reducing risk today.
Critical Industrial Flaws Pose Patching Headache For Manufacturers
Sharon Brizinov, the principal vulnerability researcher with Claroty, has discovered and reported various security flaws in industrial control systems (ICS), including most recently a vulnerability in a software component used by various critical infrastructure systems (which he disclosed last week).
Ransomware en masse on the wane: top threats inside web-phishing in H1 2020
Singapore, 09/18/2020 — Group-IB, a global threat hunting and intelligence company headquartered in Singapore, evidenced the transformation of the threat portfolio over the first half of 2020. It came as no surprise that web-phishing targeting various online services almost doubled during the COVID-19 pandemic: it accounted for 46 percent of the total number of fake web pages.