14 matches found
An LLM-Based Self-Evolving Security Framework for 6G Space-Air-Ground Integrated Networks
Recently emerged 6G space-air-ground integrated networks SAGINs, which integrate satellites, aerial networks, and terrestrial communications, offer ubiquitous coverage for various mobile applications. However, the highly dynamic, open, and heterogeneous nature of SAGINs poses severe security...
Closing the Security Gap From Threat Hunting to Detection Engineering
Closing the Security Gap From Threat Hunting to Detection Engineering By Ilya Kolmanovich, Alejandro Houspanossian, Joe Malenfant and Tomer Shloman · April 16, 2025 In today's rapidly evolving AI-fueled threat landscape, every organization is trying to stop threats as early as possible. Threat...
Rapid7 Introduces AI-driven Cloud Anomaly Detection
It’s that time of year again! AWS Re:Invent, Amazon Web Services’ annual mega-conference will soon kick off in Las Vegas and there are sure to be a ton of new cloud security innovations unveiled throughout the week. From a Rapid7 perspective, we’re launching an exciting new capability - Cloud...
[The Lost Bots] S03E02: Finding unknowns, even spy balloons
!\The Lost Bots\ S03E02: Finding unknowns, even spy balloonshttps://blog.rapid7.com/content/images/2023/04/The-Lost-Bots-logo-large.png When a balloon crossed through Canada and the United States, everyone lost their minds. The news was all-balloon, all-the-time. And the big, obvious, serious...
Real-Time Defense of Multi-Cloud Environments From Malicious Attacks and Threats
Organizations today cannot detect real-time threats at runtime due to the multi-cloud infrastructure, resulting in the possibility of malicious actors exploiting the environment. It is imperative for the modern organization to have a solution to detect advanced run-time threats in real-time to...
Simplify with Network Security as a Service (NSaaS)
Learn more on how network security as a service NSaaS employs the latest technologies to counter unknown threats and detect abnormal behavior before it becomes a direct threat...
Microsoft Warns of Cross-Account Takeover Bug in Azure Container Instances
Microsoft on Wednesday said it remediated a vulnerability in its Azure Container Instances ACI services that could have been weaponized by a malicious actor "to access other customers' information" in what the researchers described as the "first cross-account container takeover in the public...
Command Execution Vulnerability in V8+ Terminal Security System (CNVD-2021-35828)
V8+ Terminal Security System is a new-generation enterprise terminal security software, which can dynamically detect, real-time process, and trace unknown threats in the user's network across the network to meet the increasingly complex needs of domestic enterprise users for security protection o...
V8+ Terminal Security System of Beijing Falcon Security Technology Co., Ltd. has Arbitrary File Download Vulnerability
V8+ Terminal Security System is a new-generation enterprise terminal security software, which can dynamically detect, real-time process, and trace unknown threats in the user's network across the network to meet the increasingly complex needs of domestic enterprise users for security protection o...
maltrail
This is a malicious traffic detection system, utilizing publicly available blacklists containing malicious and/or generally suspicious trails. The system can detect various types of malicious traffic, including domain name, URL, IP address, and HTTP User-Agent header value. It also uses advanced...
BitDam Study Exposes High Miss Rates of Leading Email Security Systems
Imagine receiving an email from US VP Mike Pence's official email account asking for help because he has been stranded in the Philippines. Actually, you don't have to. This actually happened. Pence's email was hacked when he was still the governor of Indiana, and his account was used to attempt t...
Excerpts from 10 Endpoint Security Problems – And How the Cloud Solves Them
Predicting new threats is the top challenge for security and IT professionals Traditional antivirus is based on what’s already known – it can only stop known malware attacks based on the signatures it has at the moment. But the problem is only 30% of attacks are malware-based; if you rely solely ...
Excerpts from Moving Endpoint Security to the Predictive Cloud: Better Security
Carbon Black recently published a whitepaper on the reasons and benefits of moving endpoint security to the cloud; this is the first excerpt from that guide, which you can find here. For more information about how the Cb Predictive Security Cloud, Carbon Black's comprehensive endpoint protection...
Five Reasons Why I Joined Wallarm
By Johan Nordstrom The question of “what made you change jobs?” may be old, but the answer with my move to Wallarm is new and clear. I have a vision how to address the dynamic threat landscape of today and Wallarm’s innovative approach to security is in line with these ideas. In my 30 years caree...