Loading...
You are here:  Home  >  News

News

RSS We Live Secruity

  • A journey to Zebrocy land May 22, 2019
    ESET sheds light on commands used by the favorite backdoor of the Sednit group The post A journey to Zebrocy land appeared first on WeLiveSecurity
    ESET Research
  • Cybersecurity training and awareness: helpful resources for educators May 21, 2019
    Free resources for cybersecurity awareness and training are out there – links to many of them are provided here The post Cybersecurity training and awareness: helpful resources for educators appeared first on WeLiveSecurity
    Stephen Cobb
  • What the ban on facial recognition tech will – and will not – do May 20, 2019
    As San Francisco moves to regulate the use of facial recognition systems, we reflect on some of the many ‘faces’ of the fast-growing technology The post What the ban on facial recognition tech will – and will not – do appeared first on WeLiveSecurity
    Tony Anscombe
  • Week in security with Tony Anscombe May 17, 2019
    ESET researchers detail how ASUS's cloud service has been abused to distribute the Plead malware; in other news, ESET's telemetry shows that the use of the EternalBlue exploit is reaching new highs The post Week in security with Tony Anscombe appeared first on WeLiveSecurity
    Tomáš Foltýn
  • EternalBlue reaching new heights since WannaCryptor outbreak May 17, 2019
    Attack attempts involving the exploit are in hundreds of thousands daily The post EternalBlue reaching new heights since WannaCryptor outbreak appeared first on WeLiveSecurity
    Ondrej Kubovič
  • Survey: What should companies do to restore trust post-breach? May 16, 2019
    The ESET survey of thousands of people in Asia-Pacific (APAC) provides valuable insight into their perceptions of cyber-threats and various common aspects of online security The post Survey: What should companies do to restore trust post-breach? appeared first on WeLiveSecurity
    Tomáš Foltýn
  • Ice Hockey World Championship: The risks of free live streaming May 15, 2019
    You think you’re watching the games for free, but are you sure that's the case? Let’s review some of the risks that may come with free live streaming websites The post Ice Hockey World Championship: The risks of free live streaming appeared first on WeLiveSecurity
    Tomáš Foltýn
  • Plead malware distributed via MitM attacks at router level, misusing ASUS WebStorage May 14, 2019
    ESET researchers have discovered that the attackers have been distributing the Plead malware via compromised routers and man-in-the-middle attacks against the legitimate ASUS WebStorage software The post Plead malware distributed via MitM attacks at router level, misusing ASUS WebStorage appeared first on WeLiveSecurity
    Anton Cherepanov
  • Verizon’s data breach report: What the numbers say May 13, 2019
    What are some of the most interesting takeaways from Verizon’s latest annual security report? The post Verizon’s data breach report: What the numbers say appeared first on WeLiveSecurity
    Tony Anscombe
  • Week in security with Tony Anscombe May 10, 2019
    ESET researchers detail the modus operandi of LightNeuron, a Microsoft Exchange backdoor that leverages a previously unseen persistence mechanism The post Week in security with Tony Anscombe appeared first on WeLiveSecurity
    Tomáš Foltýn

RSS SANS

  • "Exploring the DevSecOps Toolchain" October 14, 2018
      The authors of the SANS Institute's DEV540 Secure DevOps & Cloud Application Security course created the Secure DevOps Toolchain poster to help security teams create a methodology for integrating security into the DevOps workflow. As you can see, the poster breaks DevOps down into 5 key phases and includes a massive list of open […]
    Eric Johnson
  • "Your Secure DevOps Questions Answered" September 13, 2018
      As SANS prepares for the 2nd Annual Secure DevOps Summit, Co-Chairs Frank Kim and Eric Johnson are tackling some of the common questions they get from security professionals who want to understand how to inject security into the DevOps pipeline, leverage leading DevOps practices, and secure DevOps technologies and cloud services. If you are […]
    Eric Johnson
  • "Continuous Opportunity - DevOps and Security" August 23, 2017
      Thank you to everyone at the Minnesota ISSA chapter for the opportunity to share some background on DevOps and some ideas about how security teams can benefit by adopting DevOps practices & tools. The presentation slides are available here: Continuous Opportunity- DevOps and Security. To learn more about DevOps and Cloud Security, check out […]
    SANS Institute
  • "2017 Application Security Survey is Live!" June 19, 2017
      Our 2016 application security survey, led by Dr. Johannes Ullrich, saw AppSec Programs continuously improving. In this year's 2017 survey led by Jim Bird, we will be looking at how AppSec is keeping up with rapidly increasing rates of change as organizations continue to adopt agile development techniques and DevOps. The survey is officially […]
    Eric Johnson
  • "Taking Control of Your Application Security" April 18, 2017
      Application security is hard. Finding the right people to perform application security work and manage the program is even harder. The application security space has twice as many job openings as candidates. Combined that with the fact that for every 200 software engineers there is only 1 security professional, how do we staff a […]
    Eric Johnson