Infosec.Pub

Cybersecurity company Zscaler warns it suffered a data breach after threat actors gained access to its Salesforce instance and stole customer information, including the contents of support cases. [...]

After a plane carrying European Commission President Ursula von der Leyen suffered a GPS navigation outage on its approach to Plovdiv in Bulgaria on Aug. 31, authorities in the country said the signal had likely been jammed by Russia.

Server is running, but you are greeted with an error.

Sites at yourcountry.gov may also not bother with HTTPs Internet traffic to government domains often flows across borders, relies on a worryingly small number of network connections, or does not require encryption, according to new research.…

A team of researchers from Frondeur Labs, DistributedApps.ai, and OWASP has developed a new machine learning framework designed to help defenders anticipate attacker behavior across the stages of the Cyber Kill Chain. The work explores how machine learning models can forecast adversary techniques and generate structured attack paths. Combining ATT&CK with the kill chain The Cyber Kill Chain, introduced by Lockheed Martin, breaks down attacks into seven stages: reconnaissance, weaponization, delivery, exploitation, installation, command and … More → The post KillChainGraph: Researchers test machine learning framework for mapping attacker behavior appeared first on Help Net Security.

Comments

Boards of directors are being told that cybersecurity is now central to business resilience and growth, and that they must engage more directly in the way their organizations manage risk. A new report from Google Cloud’s Office of the CISO lays out three areas where board oversight is becoming especially important: ransomware, cyber-enabled fraud, and the intersection of innovation and cybersecurity. Ransomware is shifting to identity and help desks The report describes how ransomware attacks … More → The post Boards are being told to rethink their role in cybersecurity appeared first on Help Net Security.

From Charles Hoskinson via this RSS feed

Dakota Cary’s statement that “it is inconceivable the U.S. would ask a private company to hack Xi’s phone” is so spectacularly wrong given the mountain of evidence showing the U.S. has been using private companies for offensive intelligence operations for decades that it raises serious questions about SentinelOne’s analytical capabilities. The contrast between his confident … Continue reading SentinelOne Analyst So Wrong About China it Should be a Crime →