JuiceLedger hackers are responsible for recent phishing attacks on PyPI users
More information about the operators behind the first-known phishing campaign has surfaced by JuiceLedger Hackers, specifically aimed at the Python Package Index (PyPI), the programming language’s official third-party software repository. SentinelOne and Checkmarx described the group as a…
0 Comments2 Minutes
CIS Critical Security Controls V8: Steps and Template Download
With the changing technological landscape, the CIS Critical Security Controls v8 presents a more consolidated approach that replaces CIS Top 20 (V7), which was released some time ago. This article explains what each control is and why it is required. What is the Center for Internet Security and…
0 Comments22 Minutes
A CISO’s Guide to the MITRE ATT&CK Framework
The majority of businesses today consider cyber security to be a routine activity. Cyberattacks no longer elicit the same shock and terror that they once did. They are now just part of the job. Despite this natural progression, the volume and severity of cyber attacks continue to grow,…
0 Comments11 Minutes
Are Deepfakes a Cyber Security Threat?
Deepfakes pose a cyber security risk to businesses by increasing the effectiveness of phishing and BEC attacks, making identity fraud more straightforward, and manipulating company reputations to cause an unjustified drop in share value. If left unchecked, deepfakes will become the next…
0 Comments1 Minute
6 Ways to Avoid C-Level Executive Impersonation Fraud
How confident are you that your employees would recognize a phishing email if they received one? Would they be able to identify the difference between an email from a C-level manager and a fake? What if your executive’s email account was hacked? Executive Impersonation Fraud provides cyber…
0 Comments5 Minutes
Sideloading: what is it and how does it work?
Sideloading refers to software installation from a third party rather than an authorized source, such as apps not available through official vendors or app stores. This vulnerability gives attackers yet another critical opportunity. Why is a security risk? Third-party applications may not have…
0 Comments4 Minutes
This Virus is Dangerous! Here’s What I did!
This Virus is Dangerous! Here’s What I did! Yeah! I picked the wrong (or maybe the right) virus to analyze. Answering questions from the community. “How to check if a file is malicious or contains malware?” ZIP, EXE, DOC, XLS, PDF, JPG, MP4 – works with any……
0 Comments1 Minute
Deepfake: What is It and How to Stay Safe?
Separating fact from fiction when surfing the web has become increasingly complex over the past decade. People are less likely to examine the information they consume as their dependence on electronic communication, and virtual collaboration technology has increased. Deepfake cost news exceeding…
0 Comments8 Minutes
10-Step Security Validation Checklist for CISOs
Are you confident that your security controls will allow you to relax while you’re away from the office on a well-deserved vacation? More importantly, do you have a solid action plan to ensure a smooth transition? | Security Validation Checklist Whether you’re leaving or returning to…
0 Comments5 Minutes
Changing Human Behavior in Cyber Security
Live interview with Ragnar Sigurdsson, CISSP, CEH and Cyber Psychologist Dr. Maria Bada from AwareGO. Social engineering attacks are becoming more sophisticated as hackers utilize human psychology for crafting their campaigns. Yet, there is still the notion that cyber security awareness…
0 Comments1 Minute