Security Weekly

Gas South and ExtraHop- A Journey of Security Partnership – Rajiv Thomas – ESW #234

Demos & Training

Posts & News

Ransomware

Why ransomware groups are more businesslike and dangerous than some believe

Jane Adams May 18, 2022

The old perception of ransomware groups as teens in hoodies doesn’t really add up: more often than not today, they are highly-organized and operate with impressive corporate savvy.

DevOps

Open Source Burnout: An opening to more security gaps?

Mike McGuire May 17, 2022

Companies need to take care of their developers – or face even more security issues down the road.

Leadership

Resorting to force signals the failure of influence

Michael SantarcangeloMay 16, 2022

Forcing people to adopt a solution leads to friction and mistrust. Rather, consider it a cue to ask for people to help find a better outcome, says leadership columnist Michael Santarcangelo.

Leadership

Congratulations to our SC Awards finalists

Jill AitoroMay 16, 2022

It’s a big day: we officially unveiled finalists for the 2022 SC Awards, selected from 800 entries in 38 categories. Whether it be products, companies or executives, we saw a terrific mix of industry mainstays and new entrants – the truest reflection of a market that remains dynamic and robust.

MORE

SW Labs

Vulnerability management

Detectify’s Surface Monitoring Review | Security Weekly Labs

Paul AsadoorianMarch 11, 2022

A look at the company’s attack surface monitoring and web application scanning solution

Device Security

As XDR trend gains steam, new alliance seeks ‘shared schema’ for data exchange

Bradley BarthNovember 19, 2021

CrowdStrike CTO Michael Sentonas addressed the recently announced CrowdXDR Alliance and its goal of providing users with an XDR platform featuring a variety of integrated solutions.

MORE

Security Weekly

Gas South and ExtraHop- A Journey of Security Partnership – Rajiv Thomas – ESW #234

How one CISO started a Def Con-style security conference in-house

Crisis communications: What organizations should do before a breach

Hacking human nature doesn’t require code or certifications

Do It Yourself: Building a Security Lab At Home

Free and Open-Source Wireless IDS With Nzyme￼

Do These 5 Things to Catch More Bad Guys

KQL Kung Fu: Finding the Needle in the Haystack in Azure Environments

SYSMON: Gaining Visibility Into Your Enterprise￼

Posts & News

Why ransomware groups are more businesslike and dangerous than some believe￼

Open Source Burnout: An opening to more security gaps?￼

Resorting to force signals the failure of influence

Congratulations to our SC Awards finalists

SW Labs

Detectify’s Surface Monitoring Review | Security Weekly Labs

As XDR trend gains steam, new alliance seeks ‘shared schema’ for data exchange

SHOWS

Yard Sales, Bitcoin Thief Charged, Mouse Privilege Escalation, & LED Eavesdropping – PSW #708

Trends in Mac Malware & Apple Security – Patrick Wardle – PSW #708

Working With OpenVAS – PSW #708

Tractorload of John Deere Vulns, T-Mobile Breach, Kalay IoT Hack, & HolesWarm – PSW #707

Sequoia: A Local Privilege Escalation Vulnerability in Linux’s Filesystem Layer – . Wheel – PSW #707

Cloudflare Saves the Day, Sumo Logic SOAR, Tenable Risk Management, & Drones – ESW #240

Penning a Cyber Thriller – ESW #240

Deciduous / Decision trees + Security Chaos Engineering – Kelly Shortridge – ESW #240

New iboss Features, CVSS Scores, Praetorian GoKart, & Anti Anti-Money Laundering – ESW #239

Cybersecurity Tips & Challenges in the Hybrid Work Era – Darren Guccione – ESW #239

State of Cyber Threats: Tenfold Increase in Ransomware – Derek Manky – BSW #230

Staff Attrition Is Rising, Retaining Women in Tech, & Growing Privacy Concerns – BSW #230

10 Years Later… 15 Priorities, 8 Weeks, & 7 Steps – BSW #229

What Type of CISO Are You & Does It Align to Your Company’s Needs? – Ben Carr – BSW #229

7 Tips, 5 Simple Tips, & 3 Strategies for CISOs – BSW #228

ChaosDB, OpenSSL String Bugs, Revealing Locations, & More Top 15 Vulns – ASW #164

A DevOps Perspective on Risk Tolerance & Risk Transfer – Caroline Wong – ASW #164

BlackBerry’s BadAlloc, Glibc’s NULL, Backtick Command Injection, & ProxyLogon Details – ASW #163

Challenges in Open Source Application Security – Shubhra Kar – ASW #163

Cracked Concatenation, Injection Against DNS, Allstar GitHub, & DEF CON Highlights – ASW #162

From Compliance to Resiliency: The Evolution of InfoSec, Part 2 – Tim Callahan – SCW #84

From Compliance to Resiliency: The Evolution of InfoSec, Part 1 – Tim Callahan – SCW #84

Gatekeeping in Cybersecurity, Part 2 – Naomi Buckwalter – SCW #83

Gatekeeping in Cybersecurity, Part 1 – Naomi Buckwalter – SCW #83

Protecting Comm. & Collaboration in Contested Environments, Pt 2 – Matthew Erickson – SCW #82

Cost of Hacking, Ragnarok Decryptor, OnlyFans, & IoT Camera Flaws – Wrap Up – SWN #146

Liquid Robbed, ProxyShell Attacks, Realtek SDK, & 3D Printing Peril – SWN #145

Fortinet vs. Rapid7, OnlyFans, Cisco Critical Flaw, Kalay, & Win 11 ISOs – Wrap Up – SWN #144

T-Mobile, DeepBlueMagic, Shell Code, Colonial Returns, & Fake CAPTCHA – SWN #143

PrintNightmare 0-Day, Zoom Payout, Chaos Malware, Aggah, & INFRA:HALT Bugs – Wrap Up – SWN #142

Evilginx2 Man-in-the-Middle Attacks – Tradecraft Security Weekly #29

Black Hat & DEF CON 2018 – Tradecraft Security Weekly #28

PXE Boot Attacks – Tradecraft Security Weekly #27

OSINT & External Recon Pt. 2: Contact Discovery – Tradecraft Security Weekly #26

Phishing 2FA Tokens with CredSniper – Tradecraft Security Weekly #25

Free and Open-Source Wireless IDS With Nzyme

SYSMON: Gaining Visibility Into Your Enterprise

Why ransomware groups are more businesslike and dangerous than some believe

Open Source Burnout: An opening to more security gaps?