Fastly recently published their first #ThreatIntel report which I think is fantastic. We all benefit from getting a richer view of the threat landscape.
> Cloud Hosting providers are the primary sources of attack traffic. They are useful for conducting large-scale attacks, providing adversaries with cost-efficient computing resources and the ability to distribute their traffic, offering a layer of anonymity.
https://www.fastly.com/resources/white-papers/security/fastly-network-effect-threat-report
#threatintel #cybersecurity #report #threatlandscape
#cybersecurity is evolving rapidly as a unified global #threat based on the world wide web's reach. #business with #digital resources need to #evolve to incorporating the new #threatlandscape into thier #companyculture. More on #cyberawareness and its #evolution at https://maolte.ie/blog/115-cybersecurity-and-its-evolution
#cybersecurity #threat #business #digital #evolve #threatlandscape #companyculture #cyberawareness #evolution
#cyberdefense and #cybersecurity have been interchangeable terms for some time now. A #business with a good #security posture has a #competitive edge in the #digital world. A #business who has a #culture of evolving their #security practices and #companyculture with the #threatlandscape will have a longer-term advantage... more at https://maolte.ie/blog/115-cybersecurity-and-its-evolution
#cyberdefense #cybersecurity #business #security #competitive #digital #culture #companyculture #threatlandscape
I am reading a few threat landscape and semi annual security recap reports and came across a section in one that mentioned that GandCrab was starting to become active again.
I've personally had to deal with GandCrab during an IR event in the past, so this naturally peaked my interest. In the rabbit hole that ensued, I found this awesome analysis that I wish I had 4 years ago. Happy hacking!
https://www.taintedbits.com/2018/10/18/gandcrab-detail-analysis-of-js-delivery-payload/
#security #reports #threatlandscape #gandcrab #ransomware
The macro issues shaping the threat landscape can help security pros reset their priorities and reformulate strategy.. https://www.darkreading.com/microsoft/cisos-are-focused-on-these-3-trends-are-you- #ThreatLandscape #SecurityStrategy
#threatlandscape #securitystrategy
Happy Turkey Day! π¦
Yesterday I utilized some good practices for AzureAD sync. I was in the process of enforcing MFA in an Office365 tenant when I discovered service and admin OUs getting sync'd from their on premise domain. We will be cleaning this up!
Also any account with administrator privileges in Office365 should be cloud only. You don't want to be syncing your on premise admin accounts in the event of an on premise compromise. If so, your cloud tenant will then also be compromised without any effort from the TA. I have a cool map somewhere that shows zero trust in Office365 utilized in a way that makes sense. If I find it I'll make sure to post it here.
#zerotrust #azuread #security #mfa #2fa #turkey #mashedpotatoes #Office365 #threatlandscape
#zerotrust #azuread #security #mfa #2fa #turkey #mashedpotatoes #office365 #threatlandscape
@jerry Thats unfortunate, but understandable.
It seems like its not easy for folks if your not having an background from #enterprise #military or #government to know that in every country there are forces working for #good and depending on your #threatactor #threatlandscape #threatmodeling for #bad.
I've always put #CISA squarly in the good category due to the great work they do and they are a great resource for #infosec community and anyone else working to improve cybersecurity in private life, companies and countries.
If you and your commuity truly is a target or interest of #nationstate #lawenforcement or #intelligence community attention, I'm not sure #mastodon is the right type of platform for you.
#lawenforcement and #intelligence #agencies from #nationstate seems to always find a way when they focus their efforts and the massive resources anyways and from my perspective, I'm struggeling to see how blocking #infosecExchange would make any significant #riskreduction in such regard.
#enterprise #military #government #good #threatactor #threatlandscape #threatmodeling #bad #cisa #infosec #nationstate #lawenforcement #intelligence #mastodon #agencies #infosecexchange #RiskReduction
Discover more on 20222 #EU #Cybersecurity #threatlandscape
RT @enisa_eu: π Volatile geopolitics shakes the trends of the 2022 #Cybersecurity Threat Landscape
Today #ENISA launches its 10th annual threats overview where the geopolitical context has given rise to cyberwarfare and hacktivism.
Find out more πhttps://www.enisa.europa.eu/news/volatile-geopolitics-shake-the-trends-of-the-2022-cybersecurity-threat-landscape #ENISATL22
π¦π: https://nitter.eu/Cybersec_EU/status/1588114849963327488
#EU #cybersecurity #threatlandscape #ENISA #EnisaTL22