Uncategorized

Open Source Does Not Equal Secure

| | Cybersecurity, open source, Security Engineering, Uncategorized
Way back in 1999, I wrote about open-source software: First, simply publishing the code does not automatically mean that people will examine it for security flaws. Security researchers are fickle and busy ...
Schneier on Security
Salesforce’s Sahil Khanna talks with Radware about ensuring business resiliency

What Does a Unified Security Strategy in the Public Cloud Look Like?

| | Attack Mitigation, Cloud Security, Cyber Security, Public cloud, Uncategorized
Gain insight about how to build a unified security strategy across large network organizations and how to translate it to the public cloud The post What Does a Unified Security Strategy in ...
Radware Blog
Understanding the 2019 Capital One Attack

Understanding the 2019 Capital One Attack

| | Application Security, AppSec, Uncategorized, waf
Learn about how the Capital One attack was carried out, why Web Application Firewalls failed to prevent the attack, and how the attack could have been prevented. The post Understanding the 2019 ...
K2io

Moving from Threat Hunting to Threat Catching

| | bot attacks, Bot Defense, CQAI, machine learning, Threat Hunting, Uncategorized
The goal of a Threat Hunter is to find an attacker in the middle of an attack before they can cause damage. This entails hunting through thousands of requests trying to pick ...
Cequence

Impressive iPhone Exploit

| | Apple, Exploits, iPhone, patching, Uncategorized, zero-day
This is a scarily impressive vulnerability: Earlier this year, Apple patched one of the most breathtaking iPhone vulnerabilities ever: a memory corruption bug in the iOS kernel that gave attackers remote access ...
Schneier on Security

Manipulating Systems Using Remote Lasers

| | amazon, Apple, facebook, google, Hacking, side-channel attacks, Uncategorized
Many systems are vulnerable: Researchers at the time said that they were able to launch inaudible commands by shining lasers — from as far as 360 feet — at the microphones on ...
Schneier on Security
90% of Companies Faced Increased Cyberattacks During COVID-19

90% of Companies Faced Increased Cyberattacks During COVID-19

| | Application Security, AppSec, Cyber Security, rasp, Uncategorized, Vulnerabilities
A recent global study by Tanium of 1,000 CXOs reported on the effects of COVID-19 on enterprise and government organizations. 90 percent of those surveyed said they experienced an increase in cyberattacks ...
K2io

Undermining Democracy

| | disinformation, essays, national security policy, Uncategorized, voting
Last Thursday, Rudy Giuliani, a Trump campaign lawyer, alleged a widespread voting conspiracy involving Venezuela, Cuba, and China. Another lawyer, Sidney Powell, argued that Mr. Trump won in a landslide, the entire ...
Schneier on Security

Does AD CS Work in the Cloud?

| | ad cs, cloud pki, cloud RADIUS, Uncategorized
Digital certificates have taken over as the preferred method of network authentication because of their proven superiority to passwords in security and user experience. Many organizations recognize this and want to take ...
SecureW2
What’s the Difference between RADIUS, TLS, and EAP-TLS?

What’s the Difference between RADIUS, TLS, and EAP-TLS?

| | EAP-TLS, eap-ttls, RADIUS, Uncategorized
There are many components involved in running a secure network. It’s very easy to get bogged down by different terminology and be confused on what exactly each component does. This is especially ...
SecureW2
Load more