Risk Discovery

	[ News \| Blogs \| Reddits \| Lists \| Media \| ? ] HoneyDB
	[ privacy \| malware \| research \| vendor ]

Stories by Signal Sciences on Medium

CISO Challenges and Security’s New Path with Zane Lackey

The Importance of Unified Application Security for Your Multi-cloud Strategy

Application security needs to work with developers – or get left behind.

Starting the Avalanche: Application DoS In Microservice Architectures

Practical Tips For Defending Web Applications In The Age Of DevOps

AppSec Program for Startups with Neil Matatall

Thanks for making RSA 2017 a huge success

Next up on the Modern Security Series: DevOops: Redux

A Review of the Modern Security Series

Practical Tips for Web Application Security in the Age of Agile and DevOps

Tenable Blog

Tenable Cyber Watch: CSA Launches Zero Trust Certification, CISA Updates Security Attestation Form, and more

Cybersecurity Snapshot: U.S., U.K. Governments Offer Advice on How To Build Secure AI Systems

Maximize Your Vulnerability Scan Value with Authenticated Scanning

AWS Access Analyzer Just Got Better, So Did Tenable Cloud Security

Identities: The Connective Tissue for Security in the Cloud

Tenable Cyber Watch: NCSC Offers Guidance for Quantum Threat, SBOM Adoption for Securing the Software Supply Chain, and more

Cybersecurity Snapshot: U.S. Gov’t Revises, Seeks Input on Security Assessment Questionnaire for Software Vendors

Decrypting CNAPP: Moving Beyond the Acronyms and Analyst Jargon to a Unified Approach to Cloud Security

Frequently Asked Questions for CitrixBleed (CVE-2023-4966)

Tenable Cyber Watch: November Declared Critical Infrastructure Security and Resilience Month, and more

Qualys Security Blog

Building an AppSec Program with Qualys WAS -Introduction and Configuring a Web Application or API: Default Scan Settings

Closing the Visibility Gap: How Qualys Cloud Agent Passive Sensor (CAPS) Eliminates Blind Spots Without the Hassle

Unveiling the Deceptive Dance: Phobos Ransomware Masquerading As VX-Underground

Atlassian Confluence Broken Access Control Vulnerability (CVE-2023-22515)

Microsoft and Adobe Patch Tuesday, November 2023 Security Update Review

QSC23 – Qualys Announces a Directional Shift to Measure, Communicate, and Eliminate Cyber Risk with New Platform and Solutions

De-risking in Practice: How Qualys Customers are Driving Value in Their Organizations

Leveraging AI-informed Cybersecurity to Measure, Communicate, and Eliminate Cyber Risk

Effectively Measure, Communicate, and Eliminate Cloud Risks with TotalCloud

Cybersecurity at a Crossroads: New Implications on Business Risk

Aqua Blog

Navigating Container Security within the FedRAMP Guidelines

The Ticking Supply Chain Attack Bomb of Exposed Kubernetes Secrets

SEC vs. SolarWinds: A Cybersecurity Game Changer for CISOs

50 Shades of Vulnerabilities: Uncovering Flaws in Open-Source Vulnerability Disclosures

Scanning KBOM for Vulnerabilities with Trivy

Looney Tunables Vulnerability Exploited by Kinsing

A Nightmare on C- Suite: 6 Cloud Security Slashers in Your Organization

Exploited SSH Servers Offered in the Dark web as Proxy Pools

Ensuring Business Continuity at Aqua While Israel is at War

New Vulnerability in curl and libcurl Could Lead to Heap Buffer Overflow

Trend Micro Research, News, Perspectives

Opening Critical Infrastructure: The Current State of Open RAN Security

Cloud Security Predictions at AWS re:Invent 2023

ParaSiteSnatcher: How Malicious Chrome Extensions Target Brazil

Attack Signals Possible Return of Genesis Market, Abuses Node.js, and EV Code Signing

Exploring Weaknesses in Private 5G Networks

ALPHV/BlackCat Take Extortion Public

A Closer Look at ChatGPT's Role in Automated Malware Creation

100 Quarters of Profitability: Insights from a Trender

Cerber Ransomware Exploits Atlassian Confluence Vulnerability CVE-2023-22518

Threat Actors Leverage File-Sharing Service and Reverse Proxies for Credential Harvesting

Blog – ReliaQuest

Rest Assured: Has Your EDR Implementation Set You Up for Success?

Scattered Spider Attack Analysis

3 Best Practices for Incident Response Teams

The CISO Trends Shaping Security Decisions

Citrix Bleed Vulnerability: Background and Recommendations

QR Code Phishing: 4 Ways Scanners are Being Scammed

CISOs Must Lean Forward on Automation to Address the Threat Landscape

Automating the Compromised Credential Playbook

Vulnerability Exploitation: 3 Trends from Our Biannual Review

ReliaQuest Sponsors Youth Program to Teach Life Skills Through Golf