Anton on Security

JANUARY 22, 2021

From Google Cloud Blog: “New whitepaper: Designing and deploying a data security strategy with Google Cloud” Here is another very fun resource we created (jointly with Andrew Lance from Sidechain ), a paper on designing and running data security strategy on Google Cloud. Read our launch blog here ?—?a a long excerpt is quoted below.

Cloud Migration 113

Cloud Migration Encryption 113

Schneier on Security

DECEMBER 12, 2023

. “Once arbitrary code execution is achieved during the DXE phase, it’s game over for platform security,” researchers from Binarly, the security firm that discovered the vulnerabilities, wrote in a whitepaper.

Firmware 350

Firmware Manufacturing Internet Internet 350

Adam Shostack

JANUARY 2, 2025

Threat Modeling People are raving out our new whitepaper on Inherent Threats! Ill have more to say about this, but he raises some provocative questions about sufficient, and is best read in the context of the White House calling for memory safe languages to replace C++. Blog overview or direct link.)

Software 130

Software Advertising Hacking 130

Adam Shostack

JANUARY 2, 2025

Shostack + Associates updates We released Understanding The Four-Question Framework for Threat Modeling , a whitepaper on the Four-Question Framework. Adam spoke at JPL on Threat Modeling: Engineering and Science. Image by Midjourney: a photograph of a robot, sitting in a library, working on a jigsaw puzzle

Engineering 130

Engineering Threat Reports Software 130

CompTIA on Cybersecurity

JULY 28, 2022

Whether you are just getting started or you're taking steps to become a cyber expert, members of the CompTIA ISAO Cyber Fundamentals SME workgroup created a pair of whitepapers that represent a comprehensive collection of cybersecurity best practices that will benefit all MSPs.

Cybersecurity 80

Cybersecurity 80

Adam Shostack

JANUARY 30, 2025

This is why I included interpersonal factors in the Jenga whitepaper.) We all have too many tasks, and those where you cant imagine success, or where success seems not worth the price, are ones we want to skip.

Architecture 147

Architecture Engineering Software 147

Tech Republic Security

JUNE 7, 2022

This whitepaper introduces you. Almost every week, another large company publicly discloses being impacted by this type of attack. Due to the increased awareness of ransomware, one may think that this is a new phenomenon. But it’s not. The post Ransomware: A Beginner’s Guide to Threat Detection appeared first on TechRepublic.

Threat Detection 182

Threat Detection Ransomware 182

Security Boulevard

APRIL 12, 2021

Whitepaper: A Day In The Life Of Your Data appeared first on Security Boulevard. The post Apple Inc.

69

69

The Hacker News

JUNE 23, 2021

A new whitepaper from XDR provider Cynet demonstrates how Ransomware attacks are on the rise, and they've become a major issue for organizations across industries. A recent report estimated that by 2031, ransomware attacks would cost the world over $260 billion.

Ransomware 69

Ransomware 69

Security Boulevard

AUGUST 16, 2021

peer-reviewed whitepaper I authored for ISACA, “Optimizing Risk Response,”. Following the whitepaper, I conducted a companion. The whitepaper should be. The whitepaper should be. The post ISACA’s Risk Response Whitepaper Released appeared first on Security Boulevard. The project is a. released in July 2021.

Risk 52

Risk 52

Security Boulevard

MAY 9, 2024

The post Whitepaper: The False Promises of AI in Cybersecurity appeared first on Security Boulevard. Vendors have made bold claims, promising their AI-powered solutions will provide unparalleled capabilities, eliminate false positives, and autonomously defend against even the most sophisticated attacks.

Artificial Intelligence 52

Artificial Intelligence Cybersecurity Threat Detection 52

Security Boulevard

JUNE 29, 2022

Geoffrey Coulehan, Head of Sales for MixMode, pens our latest whitepaper on the misleading "one-click remediation" claims that many cybersecurity tool vendors are using in the marketplace. The post Whitepaper: Is “One-Click Remediation” Intentionally Misleading SOC Teams? appeared first on Security Boulevard.

Cybersecurity 52

Cybersecurity 52

Security Boulevard

JANUARY 9, 2024

While effective in their time, … Whitepaper: OVERCOMING THE LIMITS OF LEGACY DETECTION TOOLS IN TODAY’S THREAT LANDSCAPE WITH ADVANCED AI Read More → The post Whitepaper: OVERCOMING THE LIMITS OF LEGACY DETECTION TOOLS IN TODAY’S THREAT LANDSCAPE WITH ADVANCED AI appeared first on Security Boulevard.

Antivirus 59

Antivirus Firewall Software Cybersecurity 59

Security Boulevard

MARCH 30, 2022

The post WHITEPAPER: Authentication Does Not Equal Zero Trust appeared first on Security Boulevard. Many vendor claims are unclear as to what they’re promising in this space, but they are quite insistent that without Zero Trust network architectures, organizations are at great risk for data breaches and other network sabotage.

Authentication 52

Authentication Architecture Data breaches Risk 52

The Hacker News

APRIL 9, 2021

For organizations that deal with the defense infrastructure – cybersecurity is more than just a buzzword. Recently the US Department of Defense (DoD) created a new certification process – the Cybersecurity Maturity Model Certificate (CMMC) – to ensure that all its vendors and contractors follow established best cybersecurity practices.

Cybersecurity 95

Cybersecurity 95

The Hacker News

JULY 7, 2021

Security teams whose organizations are outside the Fortune 500 are faced with a dilemma. Most teams will have to choose between deploying either a network traffic analysis (NTA) or network detection and response (NDR) tool or an endpoint detection and response (EDR) tool to supplement their existing stacks.

104

104

The Hacker News

MARCH 13, 2024

In our latest whitepaper OPSWAT CEO and Founder, Benny Czarny, takes a comprehensive look at what it takes to prevent malware threats in today’s ever-evolving file upload security landscape, and a big part of that is understanding where the

Cybersecurity 133

Cybersecurity Malware 133

TrustArc

DECEMBER 1, 2021

Our whitepaper So Many States, So Many Privacy Laws offers practical tips to keep all of this information straight […]. It’s difficult for organizations to make sense of all the varied rules and regulations — which leaves many businesses unknowingly vulnerable to heavy regulatory fines.

119

119

Security Affairs

AUGUST 9, 2024

NCC Group also published a whitepaper that provides details about the reverse engineering process and exploitation techniques that its experts used to achieve arbitrary code execution on both the Sonos Era-100 and the Sonos One devices. The other major section of the whitepaper is dedicated towards the Sonos Era-100 device.

Wireless 126

Wireless Manufacturing Engineering Hacking 126

Adam Shostack

JANUARY 2, 2025

More at the Seattle Privacy Coalition blog, " Threat Modeling the Privacy of Seattle Residents ," including slides, whitepaper and spreadsheets full of data. We got to some surprising results about privacy in your commute.

Education 130

Education Mobile 130

Anton on Security

DECEMBER 20, 2021

“Achieving Autonomic Security Operations: Reducing toil” [GCP Blog] “Stop Trying to Take Humans Out of SOC … Except … Wait… Wait… Wait…” “2021 Threat Intelligence Use Cases” “Top 10 SIEM Log Sources in Real Life?” “A A SOC Tried To Detect Threats in the Cloud … You Won’t Believe What Happened Next” “Today, You Really Want a SaaS SIEM!”

Threat Detection 44

Threat Detection Cloud Migration Encryption Engineering 44

Security Boulevard

APRIL 14, 2021

LITTLETON, Mass, April 14, 2021 – CyGlass makes the case for a renewed focus on Network Detection and Response (NDR) as a foundational defensive component to stop ransomware and other targeted attacks in its new whitepaper titled “NDR SaaS: What it Can Do for You.”

Ransomware 105

Ransomware Technology Software 105

Anton on Security

SEPTEMBER 16, 2021

“Top 10 SIEM Log Sources in Real Life?” “A A SOC Tried To Detect Threats in the Cloud … You Won’t Believe What Happened Next” “Today, You Really Want a SaaS SIEM!”

Threat Detection 42

Threat Detection Cloud Migration Encryption Engineering 42

The Hacker News

JULY 26, 2023

According to the new Uptycs' whitepaper, Stealers are Organization Killers, a variety of new info stealers have emerged this year, preying A new study conducted by Uptycs has uncovered a stark increase in the distribution of information stealing (a.k.a. infostealer or stealer) malware.

Malware 97

Malware 97

CSO Magazine

MAY 18, 2023

“Rules of engagement for cyberthreat actors are constantly innovating to cause catastrophic and unavoidable situations,” said Michael Sampson, analyst at Osterman Research and author of the survey whitepaper.

Cybersecurity 111

Cybersecurity 111

Adam Shostack

JANUARY 2, 2025

Lets look at what happens if Acme gives Chuck some free resources, like our Fast, Cheap and Good: An Unusual Tradeoff Available in Threat Modeling whitepaper. If Acme had planned better, they would have given Chuck some resources and time to learn. Gravity is a coyotes natural enemy.

Technology 130

Technology Penetration Testing Software Mobile 130

Anton on Security

NOVEMBER 7, 2022

“A SOC Tried To Detect Threats in the Cloud … You Won’t Believe What Happened Next” ”Top 10 SIEM Log Sources in Real Life?”

Threat Detection 223

Threat Detection Cloud Migration Encryption CISO 223

Heimadal Security

SEPTEMBER 27, 2021

Bitcoin.org is an information portal for the top cryptocurrency, founded in August 2008 by Bitcoin’s pseudonymous founder Satoshi Nakamoto, containing information on Bitcoin, including the original whitepaper and developer documentation. According to CobraBitcoin, the attackers may have acquired illegal access by exploiting a […].

Cryptocurrency 96

Cryptocurrency Scams Malware Cybersecurity 96

Schneier on Security

MARCH 19, 2018

The publication came with the flashy website , detailed whitepaper , cool vulnerability names -- RYZENFALL, MASTERKEY, FALLOUT, and CHIMERA -- and logos we've come to expect from these sorts of things. Last week, the Israeli security company CTS Labs published a series of exploits against AMD chips.

198

198

Zero Day

MAY 16, 2024

All vendor kernels are plagued with security vulnerabilities, according to a CIQ whitepaper. Will the Linux community ever accept upstream stable kernels?

76

76

Bleeping Computer

MARCH 9, 2022

Patchstack, a leader in WordPress security and threat intelligence, has released a whitepaper to present the state of WordPress security in 2021, and the report paints a dire picture. [.].

84

84

CyberSecurity Insiders

AUGUST 19, 2021

To discover more about CISSP read our whitepaper, 9 Traits You Need to Succeed as a Cybersecurity Leader. Want to learn more, and find out how the CISSP credential can help you to achieve this seemingly insurmountable task? To learn more about this topic, read our latest article. Read the Article. Want to Learn More About CISSP?

Cybersecurity 120

Cybersecurity Education 120

Google Security

MARCH 4, 2024

In this post, we share our perspective on memory safety in a comprehensive whitepaper. We'll also highlight our commitments towards implementing several of the solutions outlined in the whitepaper, most recently with a $1,000,000 grant to the Rust Foundation , thereby advancing the development of a robust memory-safe ecosystem.

Software 109

Software Engineering Technology Risk 109

Anton on Security

MARCH 3, 2022

“A SOC Tried To Detect Threats in the Cloud … You Won’t Believe What Happened Next” “Achieving Autonomic Security Operations: Reducing toil” [GCP Blog] “Stop Trying to Take Humans Out of SOC … Except … Wait… Wait… Wait…” “Top 10 SIEM Log Sources in Real Life?” Today, You Really Want a SaaS SIEM!”

Threat Detection 189

Threat Detection Cloud Migration Encryption Engineering 189