Hot Topics

Incident Response

Phishing triage workflow in Smart SOAR

How to Build a Phishing Playbook Part 3: Playbook Development

| | automated response, Cybersecurity, dkim, dmarc, email security, Incident Response, phishing playbook, playbook development, Playbook Editor, Smart SOAR, SOAR, spf, utility commands
Welcome the third part of our series on how to build an automated incident response playbook for phishing threats inside of Smart SOAR. In this part, we will be transferring our rough ...
D3 Security
Public washroom faucets

EPA and White House Raise Alarm on Water Cybersecurity

| | Critical Infrastructure, critical infrastructure assets, critical infrastructure attack, Critical Infrastructure Cyber security, Critical Infrastructure Cybersecurity, Drinking Water, Environmental Protection Agency, EPA, ICS, operational technologies, OT, public water systems, SB Blogwatch, wastewater, water, water distribution systems, Water industry, water infrastructure, White House
Iran and China fingered: Biden admin. chides governors: Water infra. lacks “even basic cybersecurity precautions.” ...
Security Boulevard
ByteDance cCEO Shou Zi Chew

TikTok ‘Ban’ — ByteDance CEO and EFF are BFFs

| | Bytedance, china, chinese government, EFF, Electronic Frontier Foundation, Privacy, SB Blogwatch, Shou Zi Chew, social media, spyware, TikTok, TikTok Ban
7521 momentum builds: Shou Zi Chew plays for time, while Electronic Frontier Foundation says TikTok-kill bill is DOA ...
Security Boulevard
Présidente de France Travail, Alexandre Saubot

French Gov. Leaks 43 Million People’s Data — ‘France Travail’ Says Sorry

| | Alexandre Saubot, Cap emploi, CNIL, cyber attacks on governm, devops in government, DevSecOps in Government, digital government, European Governments, france, France Travail, government, Government & Regulatory News, government agencies, Government Authority, SB Blogwatch
La grande cybermalveillance: French government’s employment agency loses control of citizens’ data after biggest breach in Gallic history ...
Security Boulevard
ransomware health care

HHS to Investigate Change’s Security in Wake of Crippling Cyberattack

| | BlackCat ransomware, Health Care Security, HHS, UnitedHealth
The U.S. Department of Health and Human Services (HHS) is opening an investigation into UnitedHealth and its Change Healthcare subsidiary following a ransomware attack that for three weeks has essentially shut down ...
Security Boulevard
Two stacks of money on top of a white table.

Google Splashes the Cash in Bug Bounty Bonanza: $59 Million to Date

| | alphabet, bounty, bug bounty, bug bounty program, bugbounty, ethical hacker, ethical hackers, ethical hacking, google, SB Blogwatch, Vulnerability Rewards Program (VRP), white hat, white hat hacker, white hat hackers, White Hat Security, White Hats, WhiteHat, whitehat hackers, WhiteHat Security
Wanna be a VRP VIP? Last year, $GOOG paid $10 million to ethical hackers for finding vulnerabilities ...
Security Boulevard
Director of the Cybersecurity and Infrastructure Security Agency, Jen Easterly

Irony of Ironies: CISA Hacked — ‘by China’

| | china, china espionage, Chinese, Chinese Communists, Chinese drive-by attack, chinese government, chinese hacker, Chinese hackers, Chinese state-sponsored hacking group, Chinese Threat Actors, CIRCIA, cisa, CISA.gov, CVE-2023-46805, CVE-2024-21887, CVE-2024-21893, Cyber Security and Infrastructure Security Agency, Cybersecurity & Infrastructure Security Agency, Cybersecurity and Infrastructure Agency, Data Stolen By China, federal agency, Ivanti, Ivanti Connect Secure, Ivanti Policy Secure, Ivanti security, Ivanti Vulnerabilities, Ivanti Zero day vulnerability, Ligolo, Magnet Goblin, NerbianRAT, NSA/CISA, Peoples Republic of China, SB Blogwatch, Volt Typhoon, WARPWIRE
Free rides and traffic jams: U.S. Cybersecurity and Infrastructure Security Agency penetrated in February, via vuln in Ivanti ...
Security Boulevard
Jenkins CI/CD vulnerability

Threat Groups Rush to Exploit JetBrains’ TeamCity CI/CD Security Flaws

| | BianLian, CI/CD Security, Ransomware, software supply chain attacks
The cyberthreats to users of JetBrains’ TeamCity CI/CD platform continue to mount a week after the company issued two fixes to security vulnerabilities, with one cybersecurity vendor noting a ransomware attack that ...
Security Boulevard
Microsoft CrowdStrike HPE edge IBM attack surface ukraine CISA Log4j CISA BlackBerry IoT connected device Bluetooth

CrowdStrike Extends Scope and Reach of Cybersecurity Portfolio

| | CrowdStrike, falcon, Flow Security, ITSM, mdr, telemetry, XDR
CrowdStrike acquired Flow Security to add DSPM to its portfolio and is offering an MDR service from Dell that integrates with its Falcon XDR ...
Security Boulevard
IONIX software supply chain, secure, Checkmarx Abnormal Security cyberattack supply chain cybersecurity

IONIX ASM Platform Adds Testing Tools to Simulate Cyberattacks

| | ASM, Attack Surface Management, cyberattack, IONIX, simulation, testing
IONIX extended its ASM platform to include the ability to use simulations to conduct tests without disrupting production environments ...
Security Boulevard
Load more