Author: Staff Writer

Top Highlights Cybersecurity Budgets & Compensation: The average security budget is only 0.35% of revenue, translating to about $70 million for $20 billion firms, with top CISO compensation packages reaching $1.3 million. Significant Data Breach: Next Step Healthcare reported a year-old data breach affecting patient data, including sensitive personal and financial information, underscoring ongoing risks in health cybersecurity. Emerging Malware Threats: The SilverRAT source code was briefly leaked online, enhancing the potential for sensitive information theft, while Katz Stealer exfiltrates data from various applications, increasing the malware-as-a-service trend. New Exploited Vulnerabilities: A zero-day vulnerability in Fortinet’s systems attracted attention with…

Summary Points Targeted Spear-Phishing Campaign: A sophisticated spear-phishing campaign targets CFOs and financial executives using a legitimate remote access tool, Netbird, with tactics like social engineering and defense evasion techniques to gain persistent access to compromised systems. Multi-Stage Attack Process: The attack begins with a phishing email impersonating a recruiter, leading victims to a CAPTCHA-protected page that downloads malicious scripts to install Netbird and OpenSSH, creating hidden local accounts for continuous remote access. Emerging Phishing-as-a-Service (PhaaS): New PhaaS offerings, like the Haozi kit, have streamlined phishing operations, enabling attackers with low technical skills to launch campaigns easily, thus lowering barriers…

Certificate authorities (CAs) keep the digital world secure by issuing certificates that follow strict industry standards. But revocation incidents do happen sometimes. While CAs work to fix these errors, it’s critical for organizations to be prepared to act quickly and efficiently when revocations occur. Join DigiCert as we dive into:  Revocations Uncovered: why revocations occur, their broader impact, and how post quantum cryptography will come into play. The Importance of Automation: How automation can simplify and expedite certificate replacement, minimizing disruptions. Crypto Agility: Strategies for adapting quickly to new cryptographic standards to stay agile and secure. Revocation Best Practices:…

Artificial intelligence is revolutionizing industries at an unprecedented pace, from self-driving cars to life-saving medical advancements. But with this rapid evolution comes a new frontier of challenges that could jeopardize your organization’s security. As AI reshapes how software is developed, the risks evolve just as fast. Sensitive data breaches, operational disruptions, and even physical harm are now real threats in the age of AI. The question isn’t whether you’ll adopt AI, but how securely you’ll do it. Discover the Intersection of AI Innovation and Security Join Liqian Lim, Senior Product Marketing Manager at Snyk, for an insightful webinar exploring how…