Lucene search
K

219 matches found

Trend Micro Simply Security
Trend Micro Simply Security
added 2021/03/01 12:0 a.m.14 views

Mistakes were Made, Lessons were Learned

Mark Nunnikhoven, AWS Community Hero and Trend Micro Vice President of Cloud Research, explores how to leverage the AWS Well Architected Framework, and six core design principles to build in the AWS cloud with confidence...

1AI score
Exploits0
Microsoft Secure
Microsoft Secure
added 2021/02/08 5:0 p.m.25 views

Why threat protection is critical to your Zero Trust security strategy

The corporate network perimeter has been completely redefined. Many IT leaders are adopting a Zero Trust security model where identities play a critical role in helping act as the foundation of their modern cybersecurity strategy. As a result, cybercriminals have shifted their focus and identitie...

0.9AI score
Exploits0
Microsoft Secure
Microsoft Secure
added 2021/01/19 10:30 p.m.53 views

Using Zero Trust principles to protect against sophisticated attacks like Solorigate

The Solorigate supply chain attack has captured the focus of the world over the last month. This attack was simultaneously sophisticated and ordinary. The actor demonstrated sophistication in the breadth of tactics used to penetrate, expand across, and persist in affected infrastructure, but many...

Exploits0
Akamai Blog
Akamai Blog
added 2021/01/08 5:0 a.m.12 views

Building a Cross Team Culture

At Akamai, we all contribute to our diverse, inclusive, and engaged culture. One in which we each have a voice and are empowered to have a meaningful impact on our business and its direction. It's by fostering this culture across teams that we're able to achieve the company's guiding principles...

3.4AI score
Exploits0
Imperva Blog
Imperva Blog
added 2021/01/06 5:45 p.m.31 views

Software Supply Chain Attacks: From Formjacking to Third Party Code Changes

2020 wasn’t the first year in which software supply chain attacks caused major damage, but it certainly brought them to the general public. Much has been said about the headline-grabbing nation state examples, but there is a wide spectrum of these attacks and some are commoditized. Protecting...

0.2AI score
Exploits0
CISA
CISA
added 2020/12/03 12:0 a.m.13 views

NCSC Releases 2020 Annual Review

The United Kingdom UK National Cyber Security Centre NCSC has released its Annual Review 2020, which focuses on its response to evolving and challenging cyber threats. Recognizing cybersecurity as a “team sport,” the publication includes highlights of NCSC’s collaboration with many partners,...

6.9AI score
Exploits0References5
Schneier on Security
Schneier on Security
added 2020/07/07 11:38 a.m.27 views

IoT Security Principles

The BSA -- also known as the Software Alliance, formerly the Business Software Alliance which explains the acronym -- is an industry lobbying group. They just published "Policy Principles for Building a Secure and Trustworthy Internet of Things." They call for: Distinguishing between consumer and...

0.8AI score
Exploits0
HackRead
HackRead
added 2020/06/12 5:39 p.m.19 views

How Big Tech Leveraged Agile Principles to Build Empires

By Waqas We all know who the big 5 tech firms are. Apple, Amazon, Alphabet, Facebook, and Google are... This is a post from HackRead.com Read the original post: How Big Tech Leveraged Agile Principles to Build Empires...

1.7AI score
Exploits0
CISA
CISA
added 2020/05/22 12:0 a.m.11 views

CISA, DOE, and UK’s NCSC Issue Guidance on Protecting Industrial Control Systems

The Cybersecurity and Infrastructure Security Agency CISA, the Department of Energy DOE, and the UK's National Cyber Security Centre NCSC have released Cybersecurity Best Practices for Industrial Control Systems, an infographic providing recommended cybersecurity practices for industrial control...

6.7AI score
Exploits0References6
Fedora
Fedora
added 2020/05/20 3:48 a.m.41 views

[SECURITY] Fedora 30 Update: moodle-3.6.10-1.fc30

Moodle is a course management system CMS - a free, Open Source software package designed using sound pedagogical principles, to help educators crea te effective online learning communities...

8.8CVSS1.9AI score0.03083EPSS
Exploits0
Fedora
Fedora
added 2020/05/20 3:16 a.m.26 views

[SECURITY] Fedora 31 Update: moodle-3.7.6-1.fc31

Moodle is a course management system CMS - a free, Open Source software package designed using sound pedagogical principles, to help educators crea te effective online learning communities...

8.8CVSS1.9AI score0.03083EPSS
Exploits0
Trend Micro Simply Security
Trend Micro Simply Security
added 2020/04/24 5:26 p.m.52 views

Principles of a Cloud Migration – Security, The W5H – Episode WHAT?

Teaching you to be a Natural Born Pillar! Last week, we took you through the “WHO” of securing a cloud migration here, detailing each of the roles involved with implementing a successful security practice during a cloud migration. Read: everyone. This week, I will be touching on the “WHAT” of...

0.3AI score
Exploits0
Kitploit
Kitploit
added 2020/02/26 8:30 p.m.79 views

ABD - Course Materials For Advanced Binary Deobfuscation

Advanced Binary Deobfuscation This repository contains the course materials of Advanced Binary Deobfuscation at the Global Cybersecurity Camp GCC Tokyo in 2020. Course Abstract Reverse engineering is not easy, especially if a binary code is obfuscated. Once obfuscation performed, the binary would...

7.5AI score
Exploits0References2
NVD
NVD
added 2020/02/04 8:15 p.m.21 views

CVE-2019-15611

Violation of Secure Design Principles in the iOS App 2.23.0 causes the app to leak its login and token to other Nextcloud services when search e.g. for federated users or registering for push notifications...

4.9CVSS4.9AI score0.01081EPSS
Exploits0References2
OSV
OSV
added 2020/02/04 8:15 p.m.9 views

CVE-2019-15611

Violation of Secure Design Principles in the iOS App 2.23.0 causes the app to leak its login and token to other Nextcloud services when search e.g. for federated users or registering for push notifications...

4.9CVSS6.4AI score
Exploits0References2
CVE
CVE
added 2020/02/04 7:8 p.m.80 views

CVE-2019-15611

CVE-2019-15611 affects the iOS Nextcloud App (version 2.23.0) and is due to a violation of Secure Design Principles that causes the app to disclose login credentials and access tokens to other Nextcloud services during user search (e.g., federated users) or push-notification registration. The iss...

4.9CVSS4.8AI score0.01081EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2020/02/04 7:8 p.m.28 views

CVE-2019-15611

Violation of Secure Design Principles in the iOS App 2.23.0 causes the app to leak its login and token to other Nextcloud services when search e.g. for federated users or registering for push notifications...

4.9AI score0.01081EPSS
Exploits0References2
Microsoft Secure
Microsoft Secure
added 2020/01/09 5:0 p.m.29 views

Changing the monolith—Part 1: Building alliances for a secure culture

Any modern security expert can tell you that we’re light years away from the old days when firewalls and antivirus were the only mechanisms of protection against cyberattacks. Cybersecurity has been one of the hot topics of boardroom conversation for the last eight years, and has been rapidly...

6.7AI score
Exploits0
CISA
CISA
added 2019/12/05 12:0 a.m.17 views

ACSC Releases Fundamentals of Cross Domain Solutions

The Australian Cyber Security Centre ACSC has released a cybersecurity guide outlining the fundamentals of cross domain solution CDS technologies. This guidance provides cross domain security principles to enable organizations to share information securely across separated networks. The...

6.5AI score
Exploits0References1
Hacker One
Hacker One
added 2019/08/17 4:4 a.m.27 views

WakaTime: [invalid][false-positive] csrftoken on profile page

step of reproduce- 1. Go to https://wakatime.com and create account. 2. login account after that go public profile. 3. after that change the full name and intercept brup suite and delete csrftoken. 4. After forward then you see name was changed. Impact Violation of Secure Design Principles...

0.1AI score
Exploits0
Rows per page
Query Builder