The festive cheer of mid-November and December often extends to opportunistic threat actors who use this time of year to catch companies and people off guard. The holiday season usually sees an increase in several types of cyber threats, and…
Tag: Security Boulevard
Trend Micro Adds AI Tool While Extending CNAPP Reach
Trend Micro’s generative AI tool, Trend Companion, leverages natural language to reduce toil by bringing context to alerts and reducing incident investigation times. The post Trend Micro Adds AI Tool While Extending CNAPP Reach appeared first on Security Boulevard. This…
CISA: Threat Groups are Targeting Unitroncis PLCs in Water Systems
The United States’ top cybersecurity agency is warning that hackers are targeting a particular tool used by water and wastewater system operators around the country, noting an attack the day after Thanksgiving on a water utility in Pennsylvania. The Cybersecurity…
Black Basta Extortion Group Racks Up $107 Million in Ransom Payments
Anyone who wonders why the threat of ransomware continues to grow need only to take a look at Black Basta, the prolific extortion gang that last year likely rose from the ashes of the high-profile Russian group Conti. Black Basta…
The Elephant in AppSec Podcast⎥Lack of effective DAST tools⎥Aleksandr Krasnov (Meta, Thinkific, Dropbox)
Welcome to the first episode of The Elephant in AppSec, the podcast to explore, challenge, and boldly face the AppSec Elephants in the room. The post The Elephant in AppSec Podcast⎥Lack of effective DAST tools⎥Aleksandr Krasnov (Meta, Thinkific, Dropbox) appeared…
What Is The Cyber Kill Chain? Process & Model
Grasping the Fundamentals: A Study of the Cyber Harm Ladder Navigating the multifaceted universe of cybersecurity is similar to solving an evolving labyrinth. This world is awash with intricate principles and techniques; with the Cyber Harm Ladder gaining increasing focus…
Different Types of CISOs, Diverse Missions
There are a range of distinct roles/missions that hold the CISO title. Their ultimate goals are similar, but how they are positioned to do that varies. The post Different Types of CISOs, Diverse Missions appeared first on Security Boulevard. This…
DarkCasino WinRAR Exploit: A New APT Threat Emerges
In a recent cybersecurity revelation, a formidable and highly sophisticated cyber threat has surfaced, going by the name DarkCasino. Initially perceived as a phishing campaign orchestrated by the EvilNum group, recent analyses by cybersecurity firm NSFOCUS have reclassified DarkCasino as…
AlmaLinux Under the Hood: Key Features Every System Administrator Should Know
System administrators face the continuous challenge of ensuring reliability, security, and efficiency in their IT environments. One solution that is increasingly gaining traction is AlmaLinux. This open-source enterprise-level Linux distribution is tailored to meet the demanding needs of system administrators…
Detecting AiTM Phishing Sites with Fuzzy Hashing
Background In this blog, we will cover how Obsidian detects phishing kits or Phishing-as-a-Service (PhaaS) websites for our customers by analyzing the fuzzy hashes of visited website content. This concept draws from prior industry art, as IOCs (ex: SHA-1/SHA-265) and…