Roger Hale named Chief Security Officer at Agora
As Chief Security Officer at Agora, Hale will work to navigate compliance and security, and determine risk management and cybersecurity best practices.
Dave Maynor named Senior Director of Threat Intelligence at Cybrary
David “Dave” Maynor has been appointed Senior Director of Threat Intelligence at Cybrary, leading the new Cybrary Threat Intelligence Group (CTIG).
Identity-based attacks the top cyber threat in 2021
Among ransomware, software supply chain attacks and data breaches, a Blumira report found that identity-based attacks are the top threat organizations faced in 2021.
Exploring the connections with cybersecurity and coding
Low-code software doesn’t need to mean higher security risk. It simply means more education, rigorous app testing, and appropriate security policies around citizen development.
ISC StormCast for Tuesday, May 24th, 2022
Attacker Scanning for jQuery-File-Upload
https://isc.sans.edu/forums/diary/Attacker+Scanning+for+jQueryFileUpload/28674/
Oracle Security Alert Advisory – CVE-2022-21500
https://www.oracle.com/security-alerts/alert-cve-2022-21500.html
How to find NPM dependencies vulnerable to account hijacking
https://www.theregister.com/2022/05/23/npm_dependencies_vulnerable/
Pre-hijacked accounts
https://arxiv.org/pdf/2205.10174.pdf
CISA outlines 10 initial access points exploited by hackers
The Cybersecurity and Infrastructure Security Agency (CISA) has issued an alert listing 10 common initial access exploits for cybercriminals.
Artificial intelligence investment grows, but barriers remain
More than one-third of organizations are using AI to address skills and labor shortages and respond to competitive and environmental pressures, according to new IBM research.
Christopher Hoff joins LastPass as Chief Secure Technology Officer
As Chief Secure Technology Officer, Christopher Hoff will be responsible for the company’s technological innovation and security infrastructure.
The do’s and don’ts of communicating a data breach
There are three key elements to implementing a successful data breach communication strategy; an incident response plan, consistent communication, and transparency.
