The Numbers Are In: Identity-Based Attacks (Still) Reign Supreme in 2022
By Greg Notch, CISO, Expel The list of challenges security professionals face will not let up, as new […] The…
Phishing kit impersonates well-known brands to target US shoppers
A sophisticated phishing kit has been targeting North Americans since mid-September, using lures focused on holidays like Labor Day and…
Thousands of Amazon RDS Snapshots Are Leaking Corporate PII
A service that allows organizations to back up data in the cloud can accidentally leak sensitive data to the public…
OpenSSL fixes two high severity vulnerabilities, what you need to know
The OpenSSL Project has patched two high-severity security flaws in its open-source cryptographic library used to encrypt communication channels and…
How Chip Makers Are Implementing Confidential Computing
On-chip solutions aim to prevent breaches by separating the computing element and keeping data in the secure vault at all…
New open-source tool scans public AWS S3 buckets for secrets
A new open-source 'S3crets Scanner' scanner allows researchers and red-teamers to search for 'secrets' mistakenly stored in publicly exposed or company's…
Microsoft Data-Exposure Incident Highlights Risk of Cloud Storage Misconfiguration
Many enterprises continue to leave cloud storage buckets exposed despite widely available documentation on how to properly secure them.
What You Need for a Strong Security Posture
From the basics to advanced techniques, here's what you should know.
Attackers Use Automation to Speed from Exploit to Compromise According to Lacework Labs Cloud Threat Report
New open source Cloud Hunter tool, developed through Lacework Labs research, helps customers get better visibility to reduce response times…
Toyota discloses data leak after access key exposed on GitHub
Toyota Motor Corporation is warning that customers' personal information may have been exposed after an access key was publicly available…