Cybersecurity News, Awards, Webinars, eSummits, Research

Target of North Korean APT attack spills details of recent Kimsuky campaign

Simon HenderyJune 8, 2023

North Korean scholars are targeted by North Korean state-sponsored advanced persistent threat group.

WHITEPAPER

Wanted: A Few Good Threat Hunters

PODCASTS

RESOURCES

FEATURED

Kroger elevates fraud measures after online account creation explodes

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

Perspectives

In Brief

More Resources

Chatgpt Chat with AI or Artificial Intelligence technology, business use AI smart technology by inputting, deep learning Neural networks to understand, respond to user inputs. future technology

Vulnerability management

Hacker attempts to exploit old and new bugs up 55%

Stephen WeigandJune 7, 2023

The Network Threat Trends Research Report also highlights how quickly threat actors adopted interest in ChatGPT into their scams.

Identity and access

McDonald’s expedites onboarding and data synch so new hires can start on first day

Bradley BarthJune 7, 2023

The Golden Arches leveraged these implements to create a single-view “Golden Record” of all employees.

Cloud security

VMware discloses trio of high severity bugs in network monitoring tool

Derek B. JohnsonJune 7, 2023

The flaws, which can lead to remote code execution and information disclosure, affect versions 6.2, 6.3, 6.4, .6.51, 6.6, 6.7, 6.8, 6.9 and 6.10 of Aria Operations for Network, a cloud network monitoring tool.

North Korea flag is depicted on the screen with the program code. The concept of modern technology and site development

Threat intelligence

North Korean-linked APT groups focus on financial gain, intelligence gathering

Steve ZurierJune 7, 2023

Researchers report on two separate North Korean-linked APT groups – one financially motivated, while the other focused on gathering strategic intelligence.

Deepfakes of victims used in sextortion attacks, FBI warns

Cybercrime

Deepfakes of victims used in sextortion attacks spike, FBI warns

Simon HenderyJune 7, 2023

Blackmailers are creating fake explicit content out of pictures and videos scraped from social media or that their victims are duped into sharing.

A new report argues that CISA is not appropriately resourced or supported by interagency partners to fulfill its role as a national risk manager. (Credit: BNBB Studio via Getty Images)

Critical infrastructure

Cyberspace commission calls for updated relationship between feds, critical infrastructure

Derek B. JohnsonJune 7, 2023

The Cyberspace Solarium Commission 2.0 argues that a largely voluntary approach to securing essential functions is no longer sufficient.

Emerging technology

‘AI package hallucination’ can spread malicious code into developer environments

Steve ZurierJune 6, 2023

New finding from Vulcan Cyber underscores the need for security teams to fully test and review any code they generate from ChatGPT and other generative AI products.

Target of North Korean APT attack spills details of recent Kimsuky campaign

WHITEPAPER

Wanted: A Few Good Threat Hunters

PODCASTS

RESOURCES

FEATURED

Kroger elevates fraud measures after online account creation explodes

Get daily email updates

Perspectives

Get strategic about security automation

Bad guys no longer: Here’s how to keep data secure without restricting SaaS apps

The Volt Typhoon wake-up call

Three tips for leaders grappling with the cybersecurity workforce challenge

Five ways to prevent the risks from hardcoding secrets in code generated by LLMs

In Brief

XE Group hacking operation uncovered

Improved cyber coordination from Cyber Command, NSAs integrated center detailed

Unclassified data increasingly targeted by nation-state actors

NATO pushes for increased military cyber defender involvement

Public evidence of Section 72s benefits to US cybersecurity lacking

More Resources

In focus: MDR for finance

The 2023 Identiverse Trends Report: An overview

Growth, acceleration, and safety: Top trends in the digital identity industry

In focus: MDR for healthcare

Security professionals rank the most important people skills for incident response

Hacker attempts to exploit old and new bugs up 55%

McDonald’s expedites onboarding and data synch so new hires can start on first day

VMware discloses trio of high severity bugs in network monitoring tool

North Korean-linked APT groups focus on financial gain, intelligence gathering

Deepfakes of victims used in sextortion attacks spike, FBI warns

Cyberspace commission calls for updated relationship between feds, critical infrastructure

‘AI package hallucination’ can spread malicious code into developer environments

EVENTS

Reducing silos between Developers and AppSec in your Software Supply Chain with Snyk and ServiceNow

Prioritizing Blue Team Success Over Red Team Wins

Vulnerability management: Finding and fixing your fatal flaws

Revolutionizing the essentials: Friction-minimizing approaches to overcoming advanced account takeover (ATO)

Ransomware attackers vs. defenders: The never-ending game of one-upmanship