In July 2022, Microsoft disclosed a vulnerability in the Windows Server Service that allows an authenticated user to remotely access a local API call on a domain controller, which triggers an NTLM request. This results in a leak of credentials that allows an attacker to authenticate to Active Directory Certification Services (ADCS) and to generate a client certificate that enables remote code execution on a domain controller.
As more enterprises adopt containers, microservices, and Kubernetes for their cloud-native applications, they need to be aware of the vulnerabilities in container images during build and runtime that can be exploited. In this blog, I will demonstrate how you can implement vulnerability management in CI/CD pipelines, perform image assurance during build time, and enforce runtime threat defense to protect your workloads from security threats.
Throughout 2022, Netskope Threat Labs found that attackers have been creating phishing pages in Google Sites and Microsoft Azure Web App to steal cryptocurrency wallets and accounts from Coinbase, MetaMask, Kraken, and Gemini. These phishing pages are linked from the comment sections of other websites, where the attacker adds multiple links to the phishing pages, likely to boost SEO and drive victims directly to these pages.
These are some of the opening words in the new survey published by ISMG and HelpSystems in the ‘Data Security Survey 2022’. The survey explores how COVID19 has permanently changed how CISOs approach Data Security. It is an important study because it recognises that in a world which is in a rush to return to ‘normal’ (whatever normal is now), change has come, and we need to respond to it.
Ask any security professional how to effectively measure risk and many will give a simple answer…
A comprehensive organizational strategy and robust company security policy are crucial for effective cybersecurity. A company needs to make a concerted effort to design, execute, and follow through with a plan to deal with cyber-risk management from top to bottom. There is no one-size-fits-all strategy for the needs of enterprises in managing cyber risk. But in order to maintain strong system security in the face of constant threats, there are some core principles that every company should follow.
So many great software and cloud-based organizations turn away from working with the US Government because the authorization to operate (ATO) processes are prohibitively complicated, expensive, and time intensive.
People these days use mobile apps for everything from ordering groceries and medicines to paying loan EMIs and sending or receiving money. While it sounds convenient, users' private info, such as email, home address, bank details, etc., is always at risk of being stolen. Therefore, it becomes the duty of app development companies to take up stringent measures to ensure complete security for their users. And that's when penetration testing comes into the picture.
Executive reporting in cybersecurity is important because it keeps business leaders and stakeholders informed about the progress of cybersecurity initiatives, allowing them to track cybersecurity alignment against overarching company goals.
