News
-
iPhone 13 and 13 Pro tips and tricks: 15 iOS 15 features to try
(Pocket-lint) – With iOS 15 Apple may not have change up the visuals all that much, but there’s still plenty in there that’s worth getting accustomed to and tinkering with. […]
-
Apache Warns of Zero-Day Exploit in the Wild — Patch You Web Servers Now!
Apache has issued patches to address two security vulnerabilities, including a path traversal and file disclosure flaw in its HTTP server that it said is being actively exploited in the […]
-
Google Pledges $1m to Secure Open Source Project
Google has announced financial backing for a new initiative designed to incentivize proactive security improvements to open source code. Source: https://www.infosecurity-magazine.com/news/google-pledges-1m-open-source/
-
How to Spot an Ineffective Security Practitioner
Root out ineffective security practitioners to keep your security teams protected and engaged in a productive mannerI was recently introduced to someone professionally by a mutual contact. We set up […]
-
Incentivizing Developers is the Key to Better Security Practices
Professional developers want to embrace DevSecOps and write secure code, but their organizations need to support this seachange if they want that effort to grow. The cyber threat landscape is […]
-
New Azure AD Bug Lets Hackers Brute-Force Passwords Without Getting Caught
Cybersecurity researchers have disclosed an unpatched security vulnerability in the protocol used by Microsoft Azure Active Directory that potential adversaries could abuse to stage undetected brute-force attacks. Source: https://thehackernews.com/2021/09/new-azure-ad-bug-lets-hackers-brute.html
-
Most Third-Party Cloud Containers Have Vulnerabilities
The vast majority of third-party code used in cloud infrastructure contains vulnerabilities and misconfigurations, which could leave organizations exposed to attack, according to Palo Alto Networks. Source: https://www.infosecurity-magazine.com/news/third-party-cloud-containers/
-
4 lessons from recent Microsoft Azure cloud vulnerabilities
We are often told that the cloud is more secure than on-premises solutions. But is it really? Both are subject to similar risks and vulnerabilities, and the cloud can sometimes […]
-
[eBook] Your First 90 Days as CISO — 9 Steps to Success
Chief Information Security Officers (CISOs) are an essential pillar of an organization’s defense, and they must account for a lot. Especially for new CISOs, this can be a daunting task. […]
-
Seven strategies for building a great security team
Brennan P. Baybeck lists building a successful team as one of his top responsibilities as a CISO. Source: https://www.csoonline.com/article/3633595/seven-strategies-for-building-a-great-security-team.html
