Collaborate Disseminate
Of all those who potentially face a threat from the recently disclosed vulnerability on the Cisco Firepower Device Manager (FDM), MSSPs could feel the impact the hardest if adversaries decide to exploit it. “An MSSP may be operating Cisco Firepower De… Continue reading MSSPs Particularly Vulnerable to Cisco FDM Flaw
Flavio Aggio, CISO at the World Health Organization, has had a challenging year. Since the onset of the COVID-19 pandemic, the WHO has become a significant target for cybercriminals, and cyber attacks against the organization have skyrocketed. He recen… Continue reading World Health Organization CISO suggests a holistic approach to cybersecurity
A Salt Security survey of more than 200 security, application and DevOps professionals finds 94% of respondents have experienced an API security incident in the past 12 months, with nearly two-thirds (64%) having delayed application rollouts as a resu… Continue reading Survey Finds API Security Incidents on the Rise
People who spread anti-vaccine myths on the internet—why do they do it?
The post COVID Anti-Vaxxers Make $$$ from Crowdfunding appeared first on Security Boulevard.
Continue reading COVID Anti-Vaxxers Make $$$ from Crowdfunding
On August 3, 2021, Facebook, showed off its full 800-pound gorilla physique by attempting to crush the work of two New York University (NYU) researchers, Laura Edelson and Damon McCoy and their tool Ad Observer. Facebook said the project was scraping … Continue reading Facebook Vs. NYU and Transparency
Welcome to the Ask Chloé column on Security Boulevard! Each week, Chloé provides answers to readers’ questions to help guide them as they navigate the technology industry. This week, Chloé discusses the need to change job description language to be mo… Continue reading Ask Chloé: Reducing Biased Language in Job Descriptions
In The State of Pentesting 2021 report we dive into data from 1,602 pentests performed in 2020 on Cobalt’s Pentest as a Service (PtaaS) platform. We also survey 601 security practitioners, who are not Cobalt customers, to validate our findings. T… Continue reading Report: The State of Pentesting 2021
Considering that OT environments are increasingly in the crosshairs of attackers, the 14 vulnerabilities that JFrog and Forescout Research Labs recently discovered in NicheStack should make the likes of Siemens, Schneider Electric and Rockwell Automat… Continue reading 14 Flaws in NicheStack Leave PLCs, OT Controllers Vulnerable
The massive exploit of SolarWinds is a prime example of what is called a “supply chain” vulnerability. The vast majority of those impacted by the Russian SolarWinds attack probably had never even heard of the company SolarWinds, and did not realize th… Continue reading Supply Chain Security – Not As Easy As it Looks
A Senate committee graded cybersecurity as poor among eight big agency departments. Not much has changed since the last report.
The post SHOCKER: Senate Says Security Sucks—Still appeared first on Security Boulevard.
Continue reading SHOCKER: Senate Says Security Sucks—Still