Hot stuff - Security Ticks

20 free cybersecurity tools you might have missed

cybersecurity, Don't miss, GitHub, Hot stuff, News, open source, software / SecurityTicks

20 free cybersecurity tools you might have missed 2024-06-04 at 07:31 By Help Net Security Free, open-source cybersecurity tools have become indispensable to protecting individuals, organizations, and critical infrastructure from cyber threats. These tools are created through collaborative and transparent efforts, making them affordable and accessible alternatives to proprietary software. Here, you will find a […]

React to this headline:

20 free cybersecurity tools you might have missed Read More »

Third-party vendors pose serious cybersecurity threat to national security

cyber risk, cybersecurity, Don't miss, Hot stuff, Ransomware, SecurityScorecard, third party compromise, threat, Video / SecurityTicks

Third-party vendors pose serious cybersecurity threat to national security 2024-06-04 at 07:01 By Help Net Security In this Help Net Security video, Paul Prudhomme, Principal Security Analyst at SecurityScorecard, discusses the findings of the 2024 Redefining Resilience: Concentrated Cyber Risk in a Global Economy Research report. This research details a surge in adversaries exploiting third-party

React to this headline:

Third-party vendors pose serious cybersecurity threat to national security Read More »

High-risk Atlassian Confluence RCE fixed, PoC available (CVE-2024-21683)

Atlassian Confluence, CVE, Don't miss, Hot stuff, News, PoC, SonicWall, vulnerability / SecurityTicks

High-risk Atlassian Confluence RCE fixed, PoC available (CVE-2024-21683) 2024-06-03 at 12:16 By Zeljka Zorz If you’re self-hosting an Atlassian Confluence Server or Data Center installation, you should upgrade to the latest available version to fix a high-severity RCE flaw (CVE-2024-21683) for which a PoC and technical details are already public. About CVE-2024-21683 Confluence Server and

React to this headline:

High-risk Atlassian Confluence RCE fixed, PoC available (CVE-2024-21683) Read More »

NethSecurity: Open-source Linux firewall

Don't miss, firewall, Hot stuff, Linux, News, open source, software / SecurityTicks

NethSecurity: Open-source Linux firewall 2024-06-03 at 07:31 By Mirko Zorz NethSecurity is a free, open-source Linux firewall that simplifies network security deployment. It integrates various security features into one platform, including firewalling, intrusion detection and prevention, antivirus, multi-WAN, DNS, and content filtering. NethSecurity has an intuitive interface that delivers real-time insights and control over network

React to this headline:

NethSecurity: Open-source Linux firewall Read More »

Snowflake denies breach, blames data theft on poorly secured customer accounts

data breach, Don't miss, extortion, Hot stuff, Hudson Rock, Mitiga, News, Snowflake / SecurityTicks

Snowflake denies breach, blames data theft on poorly secured customer accounts 2024-06-01 at 23:32 By Zeljka Zorz Snowflake is disputing claims made by a threat actor who stole data belonging to Santander and Ticketmaster, and maintains that the theft of customer data was the result of stolen customer login credentials. “We are aware of recent

React to this headline:

Snowflake denies breach, blames data theft on poorly secured customer accounts Read More »

Snowflake compromised? Attackers exploit stolen credentials

credentials, data breach, data theft, Don't miss, enterprise, extortion, Hot stuff, Hudson Rock, Mitiga, News, Snowflake / SecurityTicks

Snowflake compromised? Attackers exploit stolen credentials 2024-05-31 at 22:17 By Zeljka Zorz Have attackers compromised Snowflake or just their customers’ accounts and databases? Conflicting claims muddy the situation. What is Snowflake? Snowflake is cloud-based data storage and analytics company based in the US, and claims nearly 9,500 organizations around the world as customers. “From an

React to this headline:

Snowflake compromised? Attackers exploit stolen credentials Read More »

25,000 individuals affected in BBC Pension Scheme data breach

data breach, Don't miss, Europe, Hot stuff, News, Privacy, UK / SecurityTicks

25,000 individuals affected in BBC Pension Scheme data breach 2024-05-31 at 16:16 By Zeljka Zorz Personal information of current and former BBC employees has been exposed in a data breach that affected the broadcaster’s in-house pension scheme. More than 25,000 individuals have been affected, according to The Guardian. What data was exposed? “On the 21

React to this headline:

25,000 individuals affected in BBC Pension Scheme data breach Read More »

Check Point VPN zero-day exploited since beginning of April (CVE-2024-24919)

0-day, Check Point, CISA, CVE, Don't miss, enterprise, Hot stuff, News, Rapid7, WatchTowr / SecurityTicks

Check Point VPN zero-day exploited since beginning of April (CVE-2024-24919) 2024-05-31 at 14:32 By Zeljka Zorz Attackers have been exploiting CVE-2024-24919, a zero-day vulnerability in Check Point Security Gateways, to pinpoint and extract password hashes for local accounts, which they then used to move laterally in the target organizations’ network. “The vulnerability is particularly critical

React to this headline:

Check Point VPN zero-day exploited since beginning of April (CVE-2024-24919) Read More »

NIST says NVD will be back on track by September 2024

CVE, Don't miss, Hot stuff, News, NIST, vulnerability assessment, vulnerability management / SecurityTicks

NIST says NVD will be back on track by September 2024 2024-05-30 at 14:01 By Zeljka Zorz The National Institute of Standards and Technology (NIST) has awarded a contract for an unnamed company/organization to help them process incoming Common Vulnerabilities and Exposures (CVEs) for inclusion in the National Vulnerability Database (NVD), the agency has announced

React to this headline:

NIST says NVD will be back on track by September 2024 Read More »

Moonstone Sleet: A new North Korean threat actor

cyber espionage, data theft, Don't miss, Hot stuff, Microsoft, News, North Korea, Ransomware / SecurityTicks

Moonstone Sleet: A new North Korean threat actor 2024-05-29 at 15:46 By Zeljka Zorz Microsoft has named yet another state-aligned threat actor: Moonstone Sleet (formerly Storm-1789), which engages in cyberespionage and ransomware attacks to further goals of the North Korean regime. “Moonstone Sleet uses tactics, techniques, and procedures (TTPs) also used by other North Korean

React to this headline:

Moonstone Sleet: A new North Korean threat actor Read More »

How fraudsters stole $37 million from Coinbase Pro users

account hijacking, Coinbase, Don't miss, fraud, Hot stuff, News, phishing, remote access, social engineering, USA / SecurityTicks

How fraudsters stole $37 million from Coinbase Pro users 2024-05-29 at 13:46 By Zeljka Zorz A convincing phishing page and some over-the-phone social engineering allowed a group of crooks to steal over $37 million from unlucky Coinbase Pro users. One of them – Chirag Tomar, a 30-year-old citizen of the Republic of India – has

React to this headline:

How fraudsters stole $37 million from Coinbase Pro users Read More »

PoC exploits for critical FortiSIEM command execution flaws released (CVE-2024-23108, CVE-2023-34992)

CVE, Don't miss, enterprise, exploit, Fortinet, Horizon3.ai, Hot stuff, News, PoC, vulnerability / SecurityTicks

PoC exploits for critical FortiSIEM command execution flaws released (CVE-2024-23108, CVE-2023-34992) 2024-05-29 at 13:01 By Zeljka Zorz Horizon3.ai researches have released proof-of-concept (PoC) exploits for CVE-2024-23108 and CVE-2023-34992, vulnerabilities that allow remote, unauthenticated command execution as root on certain Fortinet FortiSIEM appliances. CVE confusion FortiSIEM helps customers build an inventory of their organization’s assets, it

React to this headline:

PoC exploits for critical FortiSIEM command execution flaws released (CVE-2024-23108, CVE-2023-34992) Read More »

Avoiding the cybersecurity blame game

cybersecurity, Data Protection, Don't miss, Expert analysis, Expert corner, Hot stuff, human error, News, opinion, policy, Praxis Security Labs, Risk Management / SecurityTicks

Avoiding the cybersecurity blame game 2024-05-29 at 07:31 By Help Net Security Cyber risk management has many components. Those who do it well will conduct comprehensive risk assessments, enact well-documented and well-communicated processes and controls, and fully implemented monitoring and review requirements. Processes and controls typically comprise policies, which will include detailed explanations of the

React to this headline:

Avoiding the cybersecurity blame game Read More »

RansomLord: Open-source anti-ransomware exploit tool

cybercrime, Don't miss, GitHub, Hot stuff, News, open source, Ransomware, software / SecurityTicks

RansomLord: Open-source anti-ransomware exploit tool 2024-05-29 at 07:01 By Mirko Zorz RansomLord is an open-source tool that automates the creation of PE files, which are used to exploit ransomware pre-encryption. “I created RansomLord to demonstrate ransomware is not invincible, has vulnerabilities and its developers make mistakes and can write bad code just like everyone else,”

React to this headline:

RansomLord: Open-source anti-ransomware exploit tool Read More »

A closer look at GenAI impact on businesses

1Password, Accenture, Cisco, Cloud Security Alliance, Code42, Don't miss, generative AI, Google Cloud, Hot stuff, IBM, Netskope, News, report, Splunk, survey, Trellix / SecurityTicks

A closer look at GenAI impact on businesses 2024-05-29 at 06:01 By Help Net Security This article includes excerpts from various reports that provide statistics and insights on GenAI and its impact on businesses. CEOs accelerate GenAI adoption despite workforce resistance IBM | IBM study | May 2024 63% of CEOs say their teams have

React to this headline:

A closer look at GenAI impact on businesses Read More »

Attackers are probing Check Point Remote Access VPN devices

Check Point, Cisco, Don't miss, enterprise, Hot stuff, News, VPN / SecurityTicks

Attackers are probing Check Point Remote Access VPN devices 2024-05-28 at 12:46 By Zeljka Zorz Attackers are trying to gain access to Check Point VPN devices via local accounts protected only by passwords, the company has warned on Monday. Their ultimate goal is to use that access to discover and pivot to other enterprise assets

React to this headline:

Attackers are probing Check Point Remote Access VPN devices Read More »

The evolution of security metrics for NIST CSF 2.0

CISO, cybersecurity, Don't miss, Expert analysis, Expert corner, framework, Gutsy, Hot stuff, News, opinion, security metrics, threats / SecurityTicks

The evolution of security metrics for NIST CSF 2.0 2024-05-28 at 08:03 By Help Net Security CISOs have long been spreadsheet aficionados, soaking up metrics and using them as KPIs for security progress. These metrics have traditionally measured specific systems or single indicators — vulnerabilities detected, percentage of vulnerabilities patched, software and hardware asset inventory

React to this headline:

The evolution of security metrics for NIST CSF 2.0 Read More »

How to combat alert fatigue in cybersecurity

cybersecurity, DevOps, Don't miss, Features, framework, Hot stuff, News, opinion, Stamus Networks, strategy / SecurityTicks

How to combat alert fatigue in cybersecurity 2024-05-28 at 07:31 By Mirko Zorz In this Help Net Security interview, Ken Gramley, CEO at Stamus Networks, discusses the primary causes of alert fatigue in cybersecurity and DevOps environments. Alert fatigue results from the overwhelming volume of event data generated by security tools, the prevalence of false

React to this headline:

How to combat alert fatigue in cybersecurity Read More »

Cybersecurity teams gear up for tougher challenges in 2024

Artificial Intelligence, bot, cybersecurity, Don't miss, Edgio, Hot stuff, patching, Threat Intelligence, Video / SecurityTicks

Cybersecurity teams gear up for tougher challenges in 2024 2024-05-28 at 07:01 By Help Net Security In this Help Net Security video, Tom Gorup, VP of Security Services at Edgio, discusses the continually changing threat landscape. It is riddled with vulnerabilities that are frequently exploited and only intensify as geopolitics and state-sponsored activity increase. Key

React to this headline:

Cybersecurity teams gear up for tougher challenges in 2024 Read More »

Chronon: Open-source data platform for AI/ML applications

Airbnb, Don't miss, GitHub, Hot stuff, News, open source, software / SecurityTicks

Chronon: Open-source data platform for AI/ML applications 2024-05-27 at 07:01 By Mirko Zorz Chronon is an open-source, end-to-end feature platform designed for machine learning (ML) teams to build, deploy, manage, and monitor data pipelines for machine learning. Chronon enables you to harness all the data within your organization, including batch tables, event streams, and services,

React to this headline:

Chronon: Open-source data platform for AI/ML applications Read More »