Lucene search
+L

371 matches found

thn
thn
added 2023/04/25 11:53 a.m.28 views

Modernizing Vulnerability Management: The Move Toward Exposure Management

Managing vulnerabilities in the constantly evolving technological landscape is a difficult task. Although vulnerabilities emerge regularly, not all vulnerabilities present the same level of risk. Traditional metrics such as CVSS score or the number of vulnerabilities are insufficient for effectiv...

6.8AI score
Exploits0
trendmicroblog
trendmicroblog
added 2023/04/25 12:0 a.m.13 views

Achieving Cloud Compliance Throughout Your Migration

Part of a secure cloud migration strategy is ensuring compliance of all the moving pieces. Just like your cloud journey, cloud compliance isn’t all about the final destination. Discover how to leverage cloud security tools to ensure compliance is met along the way...

6.7AI score
Exploits0
thn
thn
added 2023/03/13 12:23 p.m.3 views

How to Apply NIST Principles to SaaS in 2023

The National Institute of Standards and Technology NIST is one of the standard-bearers in global cybersecurity. The U.S.-based institute's cybersecurity framework helps organizations of all sizes understand, manage, and reduce their cyber-risk levels and better protect their data. Its importance ...

7.5AI score
Exploits0
mmpc
mmpc
added 2022/12/13 5:0 p.m.17 views

4 things to look for in a multicloud data protection solution

What does it mean to be a multicloud organization? As the name implies, the term describes a model of cloud computing where an organization uses multiple clouds—two or more public clouds, private clouds, or a combination of public, private, and edge clouds—to distribute applications and services...

Exploits0
impervablog
impervablog
added 2022/12/08 9:0 a.m.21 views

2023 Predictions: The Data Security Shake-up

The move to the cloud continues to create complexity around data security. In 2023, Imperva believes the increasingly diverse data landscape will drive a fundamental shift in the people, processes, and technology in cybersecurity. Imperva’s data security leaders explain how IT environments will...

7.3AI score
Exploits0
mmpc
mmpc
added 2022/11/22 8:40 p.m.29 views

Microsoft supports the DoD’s Zero Trust strategy

The Department of Defense DoD released its formal Zero Trust strategy today, marking a major milestone in its goal of achieving enterprise-wide implementation by 2027. The strategy comes at a critical time as United States government networks continue to face nearly half the global nation-state...

7.5AI score
Exploits0
mssecure
mssecure
added 2022/11/22 8:40 p.m.34 views

Microsoft supports the DoD’s Zero Trust strategy

The Department of Defense DoD released its formal Zero Trust strategy today, marking a major milestone in its goal of achieving enterprise-wide implementation by 2027. The strategy comes at a critical time as United States government networks continue to face nearly half the global nation-state...

7.5AI score
Exploits0
thn
thn
added 2022/11/16 12:19 p.m.13 views

7 Reasons to Choose an MDR Provider

According to a recent survey, 90% of CISOs running teams in small to medium-sized enterprises SMEs use a managed detection and response MDR service. That's a 53% increase from last year. Why the dramatic shift to MDR? CISOs at organizations of any size, but especially SMEs, are realizing that the...

7.1AI score
Exploits0
kitploit
kitploit
added 2022/11/06 11:30 a.m.259 views

Collect-MemoryDump - Automated Creation Of Windows Memory Snapshots For DFIR

Collect-MemoryDump - Automated Creation of Windows Memory Snapshots for DFIR Collect-MemoryDump.ps1 is PowerShell script utilized to collect a Memory Snapshot from a live Windows system in a forensically sound manner. Features: Checks for Hostname and Physical Memory Size before starting memory...

6.9AI score
Exploits0References7
nvd
nvd
added 2022/11/01 8:15 a.m.36 views

CVE-2022-3369

An Improper Access Control vulnerability in the bdservicehost.exe component, as used in Bitdefender Engines for Windows, allows an attacker to delete privileged registry keys by pointing a Registry symlink to a privileged key. This issue affects: Bitdefender Engines versions prior to 7.92659. It...

8.6CVSS0.00181EPSS
Exploits0References1
osv
osv
added 2022/11/01 8:15 a.m.8 views

CVE-2022-3369

An Improper Access Control vulnerability in the bdservicehost.exe component, as used in Bitdefender Engines for Windows, allows an attacker to delete privileged registry keys by pointing a Registry symlink to a privileged key. This issue affects: Bitdefender Engines versions prior to 7.92659. It...

5.5CVSS5.8AI score0.00181EPSS
Exploits0References1
mssecure
mssecure
added 2022/10/31 10:0 p.m.21 views

The door is open for anyone to become a cyber defender

Throughout Cybersecurity Awareness Month, Microsoft has highlighted the importance of cybersecurity and provided resources to help people and organizations stay safe. It’s great to have this month as a reminder, and even better if that awareness becomes a year-round endeavor. Education is really...

7AI score
Exploits0
mmpc
mmpc
added 2022/10/31 10:0 p.m.23 views

The door is open for anyone to become a cyber defender

Throughout Cybersecurity Awareness Month, Microsoft has highlighted the importance of cybersecurity and provided resources to help people and organizations stay safe. It’s great to have this month as a reminder, and even better if that awareness becomes a year-round endeavor. Education is really...

7AI score
Exploits0
trendmicroblog
trendmicroblog
added 2022/09/15 12:0 a.m.10 views

Top 5 CNAPP-Solved Security Challenges

Cloud-native application security solutions consist of various tools, each with its own objective - learn what security challenges CNAPP solves...

1.4AI score
Exploits0
malwarebytes
malwarebytes
added 2022/08/03 8:0 a.m.17 views

How to protect yourself and your kids against device theft

In no time at all, kids will be going back to school or starting college. And while gearing up for this, its very important to be aware of the threat from device loss in the school environment. Maybe you are away at university for the first time and have a new place to live, or maybe your kids ha...

0.2AI score
Exploits0
threatpost
threatpost
added 2022/08/01 1:29 p.m.42 views

Securing Your Move to the Hybrid Cloud

Infosec Insider contributor Rani Osnat is SVP Strategy at Aqua Security The combination of private and public cloud infrastructure, which most organizations are already using, poses unique security challenges. There are many reasons why organizations adopt the public cloud — from enabling rapid...

6.4AI score
Exploits0References3
ptsecurity
ptsecurity
added 2022/07/12 12:0 a.m.6 views

PT-2022-3590

Name of the Vulnerable Software and Affected Versions Windows Client Server Run-time Subsystem CSRSS affected versions not specified Description The issue is related to an elevation of privilege vulnerability in the Windows Client Server Run-time Subsystem CSRSS. It allows an attacker to gain...

7.8CVSS8AI score0.18765EPSS
Exploits0References25
threatpost
threatpost
added 2022/06/16 1:27 p.m.9 views

7 Key Findings from the 2022 SaaS Security Survey Report

The 2022 SaaS Security Survey Report, in collaboration with CSA, examines the state of SaaS security as seen in the eyes of CISOs and security professionals in today’s enterprises. The report gathers anonymous responses from 340 CSA members to examine not only the growing risks in SaaS security b...

7.4AI score
Exploits0References2
threatpost
threatpost
added 2022/06/10 11:2 a.m.214 views

Potent Emotet Variant Spreads Via Stolen Email Credentials

Emotet’s resurgence in April seems to be the signal of a full comeback for what was once dubbed “the most dangerous malware in the world,” with researchers spotting various new malicious phishing campaigns using hijacked emails to spread new variants of the malware. The “new and improved” version...

9.3CVSS8.7AI score0.99945EPSS
Exploits33References17
kitploit
kitploit
added 2022/06/03 12:30 p.m.26 views

Atomic-Operator - A Python Package Is Used To Execute Atomic Red Team Tests (Atomics) Across Multiple Operating System Environments

This python package is used to execute Atomic Red Team tests Atomics across multiple operating system environments. What's new? Why? atomic-operator enables security professionals to test their detection and defensive capabilities against prescribed techniques defined within atomic-red-team. By...

8AI score
Exploits0References17
Rows per page
Query Builder