Detection Engineering in Post SIEM and SOAR World
A few years back, my security team was tasked to create and maintain a green field environment for FEDRAMP compliance.…
China’s Elite Cyber Corps Hone Skills on Virtual Battlefields
The nation leads in the number of capture-the-flag tournaments sponsored by government and industry — a strategy from which Western nations…
Exchange Online adds Inbound DANE with DNSSEC for everyone
Microsoft announced today that inbound SMTP DANE with DNSSEC for Exchange Online, a new capability to boost email security and…
New Windows Driver Signature bypass allows kernel rootkit installs
Attackers can downgrade Windows kernel components to bypass security features such as Driver Signature Enforcement and deploy rootkits on fully…
Securing E-commerce
E-commerce is poised to account for over 20% of global purchases by 2024. This surge is fueled by a confluence of factors:…
Gloria Steinem: From deep state asset to Kamala surrogate
The irony of Gloria Steinem’s latest push for voter engagement is hard to miss. Rallying cries such as, "If you…
Exploit released for new Windows Server “WinReg” NTLM Relay attack
Proof-of-concept exploit code is now public for a vulnerability in Microsoft's Remote Registry client that could be used to take control of…
Severe flaws in E2EE cloud storage platforms used by millions
Several end-to-end encrypted (E2EE) cloud storage platforms are vulnerable to a set of security issues that could expose user data…
Poll finds majority of Americans say they’re worse off than four years ago, similar to 1992 election
A Gallup poll suggested that the majority of Americans believe they are worse off than they were four years ago,…
AI-Powered Fraud Detection Systems for Enhanced Cybersecurity
Artificial intelligence (AI) has many applications in cybersecurity. Automated fraud detection is one of the most impactful of these use…