Android security: 7 tips and tricks to secure you and your workforce [updated 2021]
These tips will help you secure your Android devices.
Topics
Kali Linux: Top 5 tools for sniffing and spoofing
Sniffing and spoofing network traffic can help protect your organization from potential attacks.
Kali Linux: Top 8 tools for wireless attacks
The importance of conducting a wireless security assessment with one of these Kali Linux tools is as important as ever.
Securing the Kubernetes cluster
Explore common security best practices to ensure that your Kubernetes cluster is properly secured.
How to run a software composition analysis tool
Learn the pros and cons of software composition analysis (SCA) and how it can help protect your application from attacks.
SOCs spend nearly a quarter of their time on email security
Email security is still a high risk for companies, but there are things you can do to mitigate it.
Security awareness manager: Is it the career for you?
Learn all about the role of a security awareness manager and find out a career in security awareness is a good fit for you.
Phishing attacks doubled last year, according to Anti-Phishing Working Group
This article will recap findings from the 2020 fourth quarter edition of the APWG Phishing Activity Trends Report.
The Phish Scale: How NIST is quantifying employee phishing risk
The NIST Phish Scale is a useful tool for quantifying phishing risk for your employees.
13 cyber security training courses you can take now — for free
From cybersecurity basics to incident response to secure coding, these training courses will help prepare you for a career in cybersecurity.
Partnering to close the cyber skills gap: 6 questions with Coursera
Six questions with Dr. Betty Vandenbosch, Chief Content Officer at Coursera, on closing the cybersecurity skills gap through industry partnerships.
DearCry ransomware: How it works and how to prevent it
The DearCry ransomware variant is a threat to users with vulnearble Microsoft Exchange servers. Learn more about it.
How criminals are using Windows Background Intelligent Transfer Service
Learn to protect yourself against cybercriminals using BITS for nefarious reasons.
Snort demo: Finding SolarWinds Sunburst indicators of compromise
Use Snort and the indicators of compromise provided by FireEye to detect Sunburst infections.
Memory forensics demo: SolarWinds breach and Sunburst malware
The SolarWinds breach was unprecedented. This case study looks at how and why through a memory analysis lens.
Colddworld immersion: VulnHub CTF walkthrough
Check out this capture the flag activity to get some knowledge and skill in techniques used to solve capture the flags.
MoneyBox 1: VulnHub CTF walkthrough
This VulnHub capture the flag (CTF) is an easy-level challenge. The goal is to gain the root of the machine and read three flag files.
Why data classification is important for security
Malicious actors want your data, but not all data is created equal. That's why data classification is a crucial step when it comes to data security.
Compliance management: Things you should know
Compliance management is important to ensure it's easier to adhere to policies. It can protect your organization and customers.
Stacks and Heap
Memory is a crucial resource for any system when conducting reverse engineering. Malware analysts must understand the way memory is assigned to a program. During...
Top 8 reverse engineering tools for cyber security professionals [updated 2021]
Whether it is rebuilding a car engine or diagramming a sentence, people can learn about many things simply by taking them apart and putting them back together...
Introduction to Secure Software Development Life Cycle
Learn all about the Secure Software Development Life Cycle.
How to implement common logic constructs such as if/else/loops in x86 assembly
X86 is an assembly language. It is also backward compatible. It is said to be compatible with systems going back 1972. Object codes can be created by x86...
9 best practices for network security
Network security is important for every organization, no matter how big or small. Here are some best practices.
Securing voice communications
Whether you're using Skype, Zoom or a custom-built system, securing voice communications is an important component of security.
Cybersecurity Weekly: Ransomware affiliates, Cisco ASA flaws, Dell vulnerabilities
Ransomware gangs are now creating websites to recruit affiliates. A Cisco ASA flaw is under attack after a PoC exploit was posted online. 30 million devices are at risk from Dell SupportAssist RCE vulnerabilities. All this, and more, in this week’s edition of Cybersecurity Weekly.
Cybersecurity Weekly: CVS Health breach, Wegmans breach, VPN attacks surging
Over a billion CVS Health records were exposed online. Supermarket chain Wegmans discloses data breach. VPN attacks surged in the first quarter of this year. All this, and more, in this week’s edition of Cybersecurity Weekly.
Dependency confusion: Compromising the supply chain
Public packages can be exploited and replaced with malicious ones at even the largest companies like Apple and more.
BendyBear: A shellcode attack used for cyberespionage
BendyBear malware has proven to be one of the most dangerous, and a threat to countries across the world.
Structures of cryptography
Cryptography is an important way to keep data safe. Learn about cryptography features and how cryptography works.
Role of digital signatures in asymmetric cryptography
Digital signatures are used for verification and authentication. See the steps to create a digital signature — and their applications.
Sparrow.ps1: Free Azure/Microsoft 365 incident response tool
Sparrow is a powerful tool used for detecting malicious activities in Azure and Microsoft Office 365.
Uncovering and remediating malicious activity: From discovery to incident handling
Need a “cybersecurity playbook” for incident response? A recent CISA alert used threat intel from five counties to create this best practice guide.
AWS security and compliance overview
Amazon offers many solutions for ensuring your environment is secure and meets many industry standard compliance frameworks. By properly utilizing tools such...
CloudGoat walkthrough series: IAM privilege escalation by attachment
This is the fourth in the walkthrough series of the CloudGoat scenarios. CloudGoat is a “vulnerable by design” AWS deployment tool designed by Rhino Security...
Android security: Everything you need to know [Updated 2021]
Android devices have a host of security risks, but updates are helping to mitigate them.
Application sideloading in Windows 10
Windows 10 security is a constantly evolving and update process. Data security in Windows 10 starts with a high encryption, using BitLocker. Access is restricted...
ICS/SCADA threats and threat actors
Industrial control systems (ICS) and Supervisory Control And Data Acquisition (SCADA) systems play a critical role in critical infrastructure and industrial...
Incident response and recovery best practices for industrial control systems
In collaboration with the North American Electric Reliability Corporation (NERC), the Federal Energy Regulatory Commission (FERC) developed a 2020 Cyber Planning...
Analysis of ransomware used in recent cyberattacks on health care institutions
In recent years, there has been a steady increase in the number of ransomware attacks on healthcare institutions. The pressure such institutions experienced...
Top Cyber Security Risks in Healthcare [Updated 2020]
The healthcare industry is a prime target for cybercriminals. Stolen protected health information (PHI) is worth hundreds, even thousands of dollars on the...
Whitespace obfuscation: PHP malware, web shells and steganography
How to deal with whitespace obfuscation and what to be aware of.
New Sudo flaw used to root on any standard Linux installation
Vulnerability tracked as CVE-2021-3156 in Sudo, could allow unprivileged local users to gain root privileges on a vulnerable host
Most common MITRE ATT&CK tactics and techniques: CISA shares most common RVAs
CISA has released a list of Risk and Vulnerability Assessments, or RVAs, to the MITRE ATT&CK Framework and have released their findings to the public...
Using MITRE ATT&CK with cyber threat intelligence
MITRE ATT&CK® is a framework. It’s designed as a store of knowledge about the possible ways that cyber attackers might create a plan or execute that...
Deception technologies: 4 tools to help you identify threats and mitigate risks
Deception technologies have come a long way from the days when honeypots were used to analyze attacker behavior. Today’s deception tools contain advanced...
Threat hunting with Kolide and osquery
In this article, we’ll discuss how we can use Kolide Fleet for threat-hunting purposes. This article is not intended to be an introductory piece, but rather...
Smart Toys and Their Cybersecurity Risks: Are Our Toys Becoming a Sci-Fi Nightmare? [updated 2021]
As smart toys get more advanced, they bring more cybersecurity risk with them.
Japan’s IoT scanning project looks for vulnerable IoT devices
The Internet of Things (IoT) is still a baby compared to other computing technologies, but the market has already exploded and continues to expand at a healthy...
Cryptocurrency Enforcement Framework: Impacts on digital forensic investigations
A new Cryptocurrency Enforcement Framework was recently released. Learn how it may impact cryptocurrency, cybersecurity and digital forensics investigations.
Blockchain and hash functions
Hash functions are cryptographic algorithms designed to protect the integrity of data. Hash functions have a few useful properties, including: One-way:...
Engineering a Twitter spearphishing bot from machine learning
Spearphishing on Twitter has proven to be dangerous and effective through the use of machine learning and bots.
Machine learning for social engineering
Social engineering is a form of communication that aims at gaining people’s trust at first and then prompting them to share sensitive information or do something...
How to design the best cybersecurity training program for your enterprise
How should you determine the return on cybersecurity training investment? Learn how to design a program that fits your organization's needs.
Cybersecurity is a public health crisis, so why don’t we treat it that way?
What can cybersecurity learn from data and guidance around public health? We break down Adam Shostack’s call to action for a cyber public health framework.
Insider threat report: Tesla employee thwarts $1 million bribery attempt
Tesla’s near insider threat situation response is a good model to follow if faced with a similar situation.
Insider threat report: Former Twitter employees charged with spying for Saudi Arabia
Insider threats are malicious threats to an organization that come from employees and other people working at that organization. This type of threat is particularly...
ICS cyber ranges: Hands-on training for industrial control system security teams
Incident response has been a pillar of cybersecurity for decades. But plans to account for the unique risks surrounding the specialized command and control...
Purple team cyber ranges: Hands-on training for red and blue teams
Businesses are always adapting and innovating when it comes to cybersecurity. While the use of layered defenses and red and blue teams used to be enough, many...
Applying NIST Cybersecurity Framework to positioning, navigation and timing systems
A NIST framework for secure positioning, navigation and timing can improve security.
NIST CSF: Cybersecurity basics — Foundation of CSF
The National Institute of Standards and Technology (NIST) Cybersecurity Framework (CSF) is all about the security of critical Infrastructure. NIST SP 800-30,...
PenTest+: DoDD 8570 overview
In November 2020, the US Department of Defense (DoD) has selected CompTIA PenTest+ as an approved certification for military personnel and defense contractors...
Introduction to the DoD Cyber Workforce Framework (DCWF)
In response to the ever-changing world, including the increased focus on cyberspace as a theater of war, the US Department of Defense (DoD) decided that it...