Open source tool Infection Monkey allows security pros to test their network like never before
Guardicore unveiled new capabilities for Infection Monkey, its free, open source breach and attack simulation (BAS) tool that maps to the MITRE ATT&CK knowledge base and tests network adherence to the Forrester Zero Trust framework.
Palo Alto Networks a Leader in Forrester Enterprise Firewalls Report
We created the first Next-Generation Firewall (NGFW) more than a decade ago and have continued to keep our customers ahead of fast-evolving threats in the years since then. More recently, we disrupted the market again with our announcement of the world’s first Machine Learning-Powered NGFW.
Windows and IE Zero-Day Vulnerabilities Chained in ‘PowerFall’ Attacks
A „PowerFall Operation” elnevezésű kampányt valószínűleg a DarkHotel indította el , egy fenyegető szereplő, akiről ismert, hogy az Észak-Koreában érdeklődő szervezeteket célozza meg, és egyesek szerint Dél-Korea szponzorálhat.
BlackBerry releases new security tool for reverse-engineering PE files
Today, at the Black Hat USA 2020 security conference, BlackBerry released a new tool for the cyber-security community.
Named PE Tree, this is a new Python-based app for Linux, Mac, and Windows that can be used to reverse-engineer and analyze the internal structure of Portable Executable (PE) files — a common file that malware authors have used to hide malicious payloads.
Extend visibility across your entire cloud environment
We are excited to announce that Intercept X for Server Advanced with EDR has been enhanced with powerful cloud visibility features from Cloud Optix.
In addition to even more detail on your AWS, Azure, and GCP cloud workloads, this integration gives customers critical insights into their wider cloud environments, including security groups, hosts, shared storage, databases, serverless, containers, and more.
Iranian hacker group becomes first known APT to weaponize DNS-over-HTTPS (DoH)
An Iranian hacking group known as Oilrig has become the first publicly known threat actor to incorporate the DNS-over-HTTPS (DoH) protocol in its attacks. Speaking in a webinar last week, Vincente Diaz, a malware analyst for antivirus maker Kaspersky, said the change happened in May this year when Oilrig added a new tool to its hacking arsenal.
Critical VPN vulnerabilities pose danger to OT networks
PLCs don’t need secure programming practices that urgently, right? Even if they would — PLCs were not capable of implementing the secure coding practices we know anyway? While we’re at it: Does PLC programming count as programming in the first place?
The Top 20 Secure PLC Coding Practices Project
PLCs don’t need secure programming practices that urgently, right? Even if they would — PLCs were not capable of implementing the secure coding practices we know anyway? While we’re at it: Does PLC programming count as programming in the first place?
Threat Hunting with MDATP
As attacks are more common and sophisticated, defense solutions must keep up the pace in order to secure the users’ cyber activities. The Microsoft Defender Advanced Threat Protection (MDATP) is an enterprise security solution, which was built to prevent, detect, investigate and respond to threats.