Monday 10/25
Citrix Expands Security Offerings To Protect Hybrid Work
The offering is designed to enable the modern, zero-trust approach to securing applications that remote work demands as it grants least-privilege access based on user behavior, continuously monitors user activities, creates security controls based on those behaviors and provides an all-in-one management and distributed enforcement across the entire environment.
https://bit.ly/3GgtXp3
gMSA Guide: Group Managed Service Account Security & Deployment (Varonis)
In any organization, there are a number of automated tasks, applications, or devices running in the background of any device across a network. One of the best ways to manage and secure these automated processes is to leverage group Managed Service Accounts or gMSAs.
https://bit.ly/3b9DoIk
Tuesday 10/26
TA551 Uses ‘SLIVER’ Red Team Tool in New Activity (Proofpoint)
SLIVER is available for free online, and capabilities include information gathering, command and control (C2) functionality, token manipulation, process injection, and other features. Red teaming tools are becoming increasingly popular with cybercrime threat actors.
https://bit.ly/3mdSeUG
Addressing the Need for a New Security Platform (Fortinet)
Today’s digital landscape now consists of multi-cloud environments, data centers comprised of both physical and virtual infrastructures, distributed branch offices, mobile workers, and home offices. This ever-growing complexity means that simply placing a security device at the network edge is no longer sufficient.
https://bit.ly/3me2SL6
Wednesday 10/27
Make Cybersecurity a Priority with Tips from Work and Personal Life (CyberArk)
Remote and hybrid work has given office workers more flexibility than they ever thought possible. But it also means careless cybersecurity practices have the potential for broader and more damaging ripple effects.
https://bit.ly/318tp4n
Nightmare Email Attacks (and Tips for Blocking Them) (Palo Alto Networks)
In investigations by Unit 42 consultants since Jan. 1, 2020, the average wire fraud attempted was $567,000 and the highest was $6 million. The FBI reports that business email compromises caused $1.87 billion in losses last year, making it one of the most expensive types of cybercrime.
https://bit.ly/3119hRz
Thursday 10/28
Clouds Without Compromise (F5)
More than ever, businesses need to be able to meet surging demand for increasingly personalized and immersive customer experiences.
https://bit.ly/3jK1pdV
Ransomware: It's a 'golden era' for cyber criminals - and it could get worse before it gets better
ENISNA, the European Union Agency for Cybersecurity, has released the latest edition of the ENISA Threat Landscape (ETL) report, which analyzed cybercriminal activity between April 2020 and July 2021. It warns of a surge in cyber criminality, much of it driven by the monetization of ransomware attacks.
https://zd.net/3vQS9JL
Friday 10/29
Join us on November 10 at 9:30 AM for our next CTO Tech Talk. Ken Phelan will be joined by Gotham’s Director of Staffing Services, Jennifer O'Connell, to discuss different topics surrounding cyber positions and recruiting.
See the link below for registration details.
https://bit.ly/31fgqxR
5 Steps to Realize a Zero Trust Enterprise in Critical Infrastructure (Palo Alto Networks)
Utilizing the framework you established, you can then also apply the same Zero Trust approach to secure your extended OT infrastructure in public clouds, 5G networks and even secure access service edge (SASE) connections with consistency and central management.
https://bit.ly/3bnIYHi