Future-proofing-security-in-post-quantum-cryptography-world

Detecting the Impossible: Serverless C2 in the Cloud

There are certain sophisticated threat behaviors that are generally considered “impossible” to detect on the network, which are both tedious and challenging for security teams to protect against. These include the use ...
Security Boulevard
Command and Control Over ICMP: Chronicles of Red Team C2

Command and Control Over ICMP: Chronicles of Red Team C2

Tremendous Red Team related blog post over at Black Hills Infosec, and superbly crafted by Darin Roberts, and detailing How To C2 over ICMP... Enjoy! ...

The MITRE ATT&CK Framework: Command and Control

Most malware these days has some level of Command and Control. This can be to exfiltrate data, tell the malware what instructions to execute next, or download encryption keys in the case ...
Best Practices for Data Security

Critical Vulnerability Patched in Apache Struts

The Apache Struts web development framework has received new security updates to address a critical vulnerability that could allow attackers to compromise web applications and servers. Apache Struts is widely used for ...
Security Boulevard