Collaborate Disseminate
A vulnerability (CVE-2021-32589) in FortiManager and FortiAnalyzer could be exploited by remote, non-authenticated attackers to execute unauthorized / malicious code as root, Fortinet has warned. The vulnerability affects the solutions’ fgfmsd da… Continue reading Fortinet plugs RCE hole in FortiManager and FortiAnalyzer (CVE-2021-32589)
One of the single most effective ways to become more resilient as an organization today is to reduce the number of manual touchpoints behind the scenes and replace them with automated processes and workflows. The fact of the matter is, the more manual … Continue reading Reducing Manual Touchpoints to Minimize Risk
Security starts before detection and response, but many organizations focus there first. Mature security teams understand the importance of identification and protection. Establishing good cyber hygiene and taking proactive measures to secure themsel… Continue reading How the Best Defense Gets Better
More than half of IT and cybersecurity professionals noted ransomware or zero-day attacks as the biggest threats to their organization, according to a Deep Instinct survey. The report highlights current and emerging threats, the impact these have on th… Continue reading The impact of current and emerging threats on the day-to-day lives of SecOps teams
The Biden Administration’s Cyber Executive Order includes a Software Bill of Materials (SBOM), an electronically readable format designed to provide an inventory of third-party components that make up software components. It is a critical and necessa… Continue reading Making the Case for Supply Chain Behavior Transparency
MITRE Engenuity has released ATT&CK Workbench, an open source tool that allows organizations to customize their local instance of the MITRE ATT&CK database of cyber adversary behavior. The tool allows users to add notes, and create new or ext… Continue reading New tool allows organizations to customize their ATT&CK database
Consider this scenario: Morgan, a level 3 security analyst, arrives to a twelve-hour security operations center (SOC) shift and finds a message that a network sensor is offline. Morgan’s first hour is spent troubleshooting the sensor and bringing it ba… Continue reading SOC burnout is real: 3 preventative steps every CISO must take
Michael DeLoach, Solution Consultant at Iceberg Networks and Mitch Blackburn, Global Head of Energy & Utilities Industry Solutions at ServiceNow discuss how organizations within the energy industry can balance the workload associated with audit and… Continue reading Ask the Expert: What are ways we can balance / reduce the workload of the various audit and compliance exercises?
Michael DeLoach, Solution Consultant at Iceberg Networks and Mitch Blackburn, Global Head of Energy & Utilities Industry Solutions at ServiceNow sat down to answer some more of the questions that they are hearing within the energy industry about ho… Continue reading Ask the Expert: As we see (and expect) regulatory changes and additions, how should companies adjust?
Michael DeLoach, Solution Consultant at Iceberg Networks and Mitch Blackburn, Global Head of Energy & Utilities Industry Solutions at ServiceNow sat down with us to answer more questions around what operational resilience means in the energy indust… Continue reading Ask the Expert: What does ‘Operational Resilience’ mean in the Energy Industry?