MITRE Debuts ICS Threat Modeling for Embedded Systems
EMB3D, like ATT&CK and CWE, seeks to provide a common understanding of cyber-threats to embedded devices and of the security…
December 2023
Communicating with Impact: Tips for Discussing Cybersecurity Metrics with Boards
Metrics have a place when it comes to reporting on organizational security and risk management, but effectively communicating their relevance…
Attackers Target Microsoft Accounts to Weaponize OAuth Apps
After compromising Azure and Outlook user accounts, threat actors are creating malicious apps with high privileges to conduct cryptomining, phishing,…
Saudi Cyber Students Team with Bahrain to Assess AI Security & Risk
A visit to the "Island of Pearls" is part of ongoing regional efforts to enhance cooperation and exchange knowledge between…
Confidential AI Protects Data and Models Across Clouds
Confidential AI integrates zero trust and confidential computing to guard data and models during inferencing, training, learning, and fine-tuning.
Hacktivists Interrupt UAE TV Streams With a Message About Gaza
The root cause may lie in set-top boxes run by a questionable service provider.
Software & Security: How to Move Supply Chain Security Up the Agenda
Getting more insight helps you to prioritize across all your systems, letting you drive more collaboration, real change, and real…
Ransomware Gangs Use PR Charm Offensive to Pressure Victims
Threat actors are fully embracing the spin machine: rebranding, speaking with the media, writing detailed FAQs, and more, all in…
Microsoft Gives Admins a Reprieve With Lighter-Than-Usual Patch Update
The company's final patch release for 2023 contained fixes for a total of just 36 vulnerabilities — none of which,…
Stamus Networks Supports NATO Red Teaming Cyber Exercise for the Fifth Consecutive Year
Twelfth annual Crossed Swords will see Stamus Networks share expertise and technology to develop and test the capabilities and practical…