Holistic API Security Strategy for 2023
In the digital landscape of 2023, Application Programming Interfaces (APIs) have taken center stage in business operations. APIs act as…
Security
Mixing cybercrime and cyberespionage – Week in security with Tony Anscombe
A crimeware group that usually targets individuals and SMBs in North America and Europe adds cyberespionage to its activities The…
Friday Squid Blogging: Light-Emitting Squid
It’s a Taningia danae: Their arms are lined with two rows of sharp retractable hooks. And, like most deep-sea squid,…
Operation Triangulation: Zero-Click iPhone Malware
Kaspersky is reporting a zero-click iOS exploit in the wild: Mobile device backups contain a partial copy of the filesystem,…
Weekly Update 351
Presently sponsored by: Kolide can get your cross-platform fleet to 100% compliance. It’s Zero Trust for Okta. Want to see…
SSL Certificate Expiration: Unveiling the Causes and How to Avoid It
Secure Socket Layer (SSL) certificates are digital certificates for authenticating the identity of websites and enabling encrypted connections. The encryption…
Asylum Ambuscade: crimeware or cyberespionage?
A curious case of a threat actor at the border between crimeware and cyberespionage The post Asylum Ambuscade: crimeware or…
Paragon Solutions Spyware: Graphite
Paragon Solutions is yet another Israeli spyware company. Their product is called “Graphite,” and is a lot like NSO Group’s…
From Scan to Secure: Using Your Vulnerability Scan Report to Strengthen Your Cyberdefense
Do you think your organization is not vulnerable to cyberattacks and you have a perfect vulnerability scan report? If yes,…
How to Reduce Third-Party Risk
The chance that a third-party vendor or supplier will expose your company to a cybersecurity vulnerability is known as third-party…