Exposed version control repositories, leaked secrets in public code repositories, a subdomain vulnerable to takover, exposed Amazon S3 buckets, and Microsoft Exchange Server servers vulnerable to CVE-2021-42321 exploitation are the most common exploit …
Tag: misconfiguration
Global Security News, North America
Top attack techniques for breaching enterprise and cloud environments
by Help Net Security •
In this video for Help Net Security, Zur Ulianitzky, Head of Research at XM Cyber, talks about the top attack techniques used by threat actors to compromise critical assets in enterprise and cloud environments. Based on a research of attack techniques …
Global Security News, North America
The perils of SaaS misconfigurations
by Help Net Security •
The Cloud Security Alliance (CSA) released the findings of an Adaptive Shield survey, offering insight into the industry’s knowledge, attitudes, and opinions regarding SaaS security and related misconfigurations. “Many recent breaches and data leaks ha…
Global Security News, North America
How to achieve better cybersecurity assurances and improve cyber hygiene
by Help Net Security •
How can your business reduce the risk of a successful cyber attack and create a defendable network? It’s best to start with the three don’ts: Don’t believe that network engineers are immune to misconfiguring devices (including firewalls, switches…
Global Security News, North America
Expanding threat landscape: Cybercriminals attacking from all sides
by Help Net Security •
A research from Trend Micro warns of spiraling risk to digital infrastructure and remote workers as threat actors increase their rate of attack on organizations and individuals. “Attackers are always working to increase their victim count and pro…
Global Security News, North America
Exposed records exceeded 40 billion in 2021
by Help Net Security •
According to a research by Tenable, at least 40,417,167,937 records were exposed worldwide in 2021, calculated by the analysis of 1,825 breach data incidents publicly disclosed between November 2020 and October 2021. This is a considerable increase on …
Global Security News, North America
How likely are mid-market organizations to experience a breach by the end of 2021?
by Help Net Security •
Coro released an extensive cybersecurity research report revealing a true market failure: a severe lack of preparedness of the mid-market sector, which is comprised of companies with between 100 and 1,500 employees, to defend against an expanding array…
Global Security News, North America
Lack of API visibility undermines basic principle of security
by Help Net Security •
One of the oldest principles of security is that you cannot secure what you cannot see. Visibility has always been the starting place for monitoring and protecting attack surface and valuable resources. Various technical challenges have come to bear ov…
Europe, Global Security News, North America
Palantir Misconfiguration Allowed Unauthorized FBI Access
by Christopher Burgess •
In the midst of the high-profile prosecution of Virgil Griffith, who is being tried in federal court for assisting North Korea in evading sanctions, the Department of Justice informed judge Kevin Castel of the Southern District of New York (SDNY) that…