Network Security

Thundra Logo

Which Third-Party Pods Do You Need in Your K8s Cluster?

| | Kubernetes, Monitoring, observability
A production-grade Kubernetes cluster has many requirements. For example, applications and services should be able to communicate across nodes and be served to external users. Traffic from these users should be properly ...
Thundra blog
Solarwinds Vulnerabilty: Address the Basics First

Solarwinds Vulnerabilty: Address the Basics First

| | Cloud Security, data protection, deception, Endpoint security, Network Detection and Response, Network Security, Threat Detection and Response
The post Solarwinds Vulnerabilty: Address the Basics First appeared first on Fidelis Cybersecurity ...
Blog – Fidelis Cybersecurity
5G

AT&T Cybersecurity Survey Surfaces Lots of 5G Security Confusion

| | 5G, Application Security, cloud services, Digital Transformation, high availability, Network Security, security
AT&T Cybersecurity has published a report that suggests more IT organizations are becoming conscious of 5G security issues heading into a year when these services should be employed more widely. Based on ...
Security Boulevard
What VPNs and Incognito Mode Still Give Away in Your Online Identity

What VPNs and Incognito Mode Still Give Away in Your Online Identity

| | GEOINT, Incognito Mode, managed attribution, VPN
VPN and Incognito Mode reveal a ton of data to visited websites that managed attribution solutions can conceal, manipulate for analyst anonymity ...
Authentic8 Blog

Russian Hack of U.S. Federal Agencies Shine Spotlight on SIEM Failures in Cybersecurity

| | Adversarial AI, Blog, Data breach, Data breaches, Network Baselines, Network Detection and Response, Network Security, network traffic analysis, Predictive AI, Self-Supervised AI, SIEM, Third Wave AI, threat detection
In what the New York Times is calling, “One of the most sophisticated and perhaps largest hacks in more than five years,” malicious adversaries acting on behalf of a foreign government, likely ...
MixMode
XDR

XDR Has Promise – and a Fair Share of Risks

| | cybersecurity tools, Extended Detection and Response, security, security platform, XDR
The security industry is often an alphabet soup of confusing acronyms—SIEM, SOAR, SASE—and the latest acronym du jour is XDR. At first glance, you may conflate it with terms such as NDR ...
Security Boulevard

How the SolarWinds Hackers Bypassed Duo’s Multi-Factor Authentication

| | Authentication, breaches, Network Security, two factor authentication, Uncategorized
This is interesting: Toward the end of the second incident that Volexity worked involving Dark Halo, the actor was observed accessing the e-mail account of a user via OWA. This was unexpected ...
Schneier on Security
IP theft

Who Watches the Watchers, Italian Style – Insider IP Theft at Leonardo

| | CERT, Infosec, insider threat, Italy, Leonardo
Two infosec team members are accused of attacking Leonardo’s systems to perpetrate IP theft, highlighting the real issue of insider threats One question often asked in security is whether an event is ...
Security Boulevard
Russia

SUNBURST: Russia Fingered in ‘Perfect 10’ Supply Chain Attack

| | APT29, Cozy Bear, fireeye, SB Blogwatch, SolarWinds, SUNBURST, supply chain attack
Russian spies have been operating inside countless enterprises and government agencies, thanks to a hack of SolarWinds ...
Security Boulevard
new normal

Assessing the New Normal for Cybersecurity

| | Cybersecurity, cyberthreat, new normal, Pandemic, work from home
As work from home continues, cyberthreats related to the new normal will remain even post-pandemic “Pandemic” was the word of the year, with runners up including quarantine, coronavirus and asymptomatic. They make ...
Security Boulevard
Load more