Written by Rafael Silva22/02/2022

CISA publishes guide with free cybersecurity tools, resources for incident response

CISA publishes guide with free cybersecurity tools, resources for incident response https://ift.tt/OHRhjqB CISA has published a guide containing free cybersecurity resources and services that may be valuable in incident response. The US Cybersecurity and Infrastructure Security Agency (CISA) is responsible for monitoring, managing, and reducing risk to the country’s critical infrastructure. The federal agency is […]

Written by Rafael Silva22/02/2022

GitHub calls for contributions to new cybersecurity Advisory Database

GitHub calls for contributions to new cybersecurity Advisory Database https://ift.tt/fe7190t GitHub announced on Tuesday that their Advisory Database for security data is now open to contributions from experts. GitHub senior product manager Kate Catlin explained that the company has teams of security researchers that review all changes and help keep security advisories up to date. […]

Written by Rafael Silva22/02/2022

Top 6 critical infrastructure cyber-risks

Top 6 critical infrastructure cyber-risks https://ift.tt/kVHNEUK Critical infrastructure sectors — from communications and energy to transportation and water — are subject to risk, just like any other organization. Understanding the top risks and how to manage them is key. Before delving into the top risks, let’s clarify what cyber-risk is and how it’s properly understood […]

Written by Rafael Silva19/02/2022

Enable SMB Compression for Fast File Transfers on Windows 11/ Windows Server 2022

Enable SMB Compression for Fast File Transfers on Windows 11/ Windows Server 2022 https://ift.tt/i6QBuWl With the SMB protocol version introduced in Windows Server 2022 and Windows 11, you can use the inline SMB compression feature when copying, moving, or opening files over a network. This allows to make file transfers faster, reduce bandwidth and network […]

Written by Rafael Silva19/02/2022

The Top SIEM Challenges Modern Security Practitioners Face Today

The Top SIEM Challenges Modern Security Practitioners Face Today https://ift.tt/krKtL7R In many ways, the tools security professionals have at their disposal have not kept up with the seismic changes in IT infrastructure and workloads brought about by the cloud. For example, most Security Information and Event Management (SIEM) platforms are still based on decades-old technology […]

Written by Rafael Silva18/02/2022

#CloudLAPS release 1.1.0 is now GA! New features include: ✅ Client-side event logging sending to Log Analytics ✅ Portal update with additional details for audit logging ✅ Analytics and monitoring workbook Read the upgrade instructions: https://t.co/VCFwxB5Ldz

#CloudLAPS release 1.1.0 is now GA! New features include: ✅ Client-side event logging sending to Log Analytics ✅ Portal update with additional details for audit logging ✅ Analytics and monitoring workbook Read the upgrade instructions: https://t.co/VCFwxB5Ldz from NickolajA twit https://twitter.com/NickolajA/status/1494311429515657223

Written by Rafael Silva18/02/2022

Squirrelwaffle, Microsoft Exchange Server vulnerabilities exploited for financial fraud

Squirrelwaffle, Microsoft Exchange Server vulnerabilities exploited for financial fraud https://ift.tt/PB3DnEA The combination of Squirrelwaffle, ProxyLogon, and ProxyShell against Microsoft Exchange Servers is being used to conduct financial fraud through email hijacking. On Tuesday, researchers from Sophos revealed a recent incident in which a Microsoft Exchange Server, which had not been patched to protect it against […]

Written by Rafael Silva18/02/2022

Traditional MFA is creating a false sense of security

Traditional MFA is creating a false sense of security https://ift.tt/2vHAsza A report from HYPR and Cybersecurity Insiders, reveals that despite the zero trust initiative, many organizations are still highly exposed to credential attacks due to insufficient multi-factor authentication (MFA) methods and overall lack of urgency after potential exposure. In fact, 64% of those hacked did […]

Written by Rafael Silva18/02/2022

Vulnerability found in WordPress plugin with over 3 million installations

Vulnerability found in WordPress plugin with over 3 million installations https://ift.tt/Nfl5Fpg Updates have been released for UpdraftPlus, a WordPress plugin with over 3 million installations, after a vulnerability was discovered by security researcher Marc Montpas. In a blog post, the Wordfence Threat Intelligence team explained that the vulnerability allows any logged-in user, including subscriber-level users, […]

Written by Rafael Silva13/02/2022

Fixing Common AD Security Issues With BloodHound FOSS

Fixing Common AD Security Issues With BloodHound FOSS https://ift.tt/hFiOd6N Active Directory (AD) is Microsoft’s identity and access management software that controls which users have access to the systems and resources on a network. It’s a popular target for attackers because getting control of AD allows them to deploy malware, steal sensitive information or do other […]

Stack IT News

Collecting news

Author: Rafael Silva

CISA publishes guide with free cybersecurity tools, resources for incident response

GitHub calls for contributions to new cybersecurity Advisory Database

Top 6 critical infrastructure cyber-risks

Enable SMB Compression for Fast File Transfers on Windows 11/ Windows Server 2022

The Top SIEM Challenges Modern Security Practitioners Face Today

#CloudLAPS release 1.1.0 is now GA! New features include: ✅ Client-side event logging sending to Log Analytics ✅ Portal update with additional details for audit logging ✅ Analytics and monitoring workbook Read the upgrade instructions: https://t.co/VCFwxB5Ldz

Squirrelwaffle, Microsoft Exchange Server vulnerabilities exploited for financial fraud

Traditional MFA is creating a false sense of security

Vulnerability found in WordPress plugin with over 3 million installations

Fixing Common AD Security Issues With BloodHound FOSS