Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

In a constantly connected world, protecting sensitive data in what are often complex database structures requires staying up to date with cyber criminals’ malicious attack techniques, and infection methods. This research is an extension of another project which involves monitoring attacks carried out on database servers worldwide. Understanding how these bots work can keep your digital world safe and secure.

Over the last couple of decades in the cybersecurity industry, I have observed how APIs have gained significant importance in modern cloud-based architectures over the past few decades. In fact, they account for over 80% of all web traffic. However, this increased usage has also made APIs vulnerable to cyber threats. A closer look reveals that APIs are now one of the most prominent threat vectors in the cybersecurity landscape.

In our final OT:ICEFALL report, Forescout Vedere Labs presents three new vulnerabilities and concludes the project after one year of research following the original disclosure. The OT:ICEFALL research, including 61 vulnerabilities affecting 13 vendors, has yielded three key insights into the current state of OT product security.

Architects and engineers know that success depends on getting the right information to the right people at the right time. And when it comes to projects, having access to essential digital content from Newforma makes all the difference; but getting that content into a unified platform is critical.

Essen Health Care is a massive healthcare network of facilities and providers throughout New York City, Staten Island, and Westchester County. With more than 300 providers at a range of facilities connected to Essen Health Care, the organization maintains and stores a huge amount of medical and personal data for patients, providers, faculty, and more. All this data is protected by security features, but it was exposed in a recent breach.

In the digital era, managing your attack surface – the sum total of all potential attack vectors in your systems – is a critical part of your cybersecurity strategy. Attack Surface Management (ASM) provides the insights and tools necessary to understand, assess, prioritize and remediate risks faster and more effectively. In this post, we’re going to explore eight key ASM advantages for security teams, and the key product capabilities needed to achieve them.

Complexity is the new normal, which applies equally to businesses’ networks and wireless environments. This is complicated further by the fact that cyberattacks that seek to exploit vulnerabilities in organizations' WLANs (Wireless Local Area Networks) are becoming increasingly sophisticated. On World Wi-Fi Day, we want to offer you security tips to create a safer wireless environment.

Legitimate services can be exploited in social engineering, including business email compromise (BEC) attacks. Researchers at Check Point describe one current BEC campaign that’s using Soda PDF to send messages encouraging the recipients to call a phone number. Should they make the call, the bad actor on the line seeks to winkle them out of their cash. Check Point calls these kinds of attempts, which “leverage legitimate services to send out malicious material,” BEC 3.0.