Vi anbefaler denne podcasten (kun på norsk). " During their conversation, Robby and Espen discuss KraftCERT/InfraCERT's annual threat report, the most serious threats to the constituency, techniques seen being used, push to the cloud w/trade-offs &NIS(2)"
https://t.co/Z4SuDbFFqP
I have been learning Threat hunting lately.
These are 2 good resources I’ve found.
1. https://t.co/LUg8mnQDNm
2. https://t.co/wxzW3lDXQ3
If you know more good resources share below 👇
Latest supply chain guidance starts well in step 1.
Sadly drifts to status quo contractual ideas that haven't effectively served security objectives or tech markets at scale.
Favor approaches w/ leverage: security rating services, attack surface mgmt, provenance frameworks etc.
Litt slemt å legge ut denne i dag, men den er en allmenn kommentar som gjelder veldig mange virksomheter. Både offentlige og private...
Slik har det vært i mange år!
#vintagesecurity#infosec#sikkerhet#humor#ironi
NEW: the Danish capital region has banned Hikvision purchases following an assessment that Hikvision constitutes a "critical threat to security" https://t.co/mWhscSl2rB via @ipvideo
Microsoft warned of a consumer-facing attack that made use of rogue OAuth applications deployed on compromised cloud tenants to ultimately seize control of Exchange servers and spread spam.
https://t.co/fYcZo3wXMy
Har skrevet noen ord om at ledere og medarbeidere IKKE er virksomhetens største sikkerhetstrussel!
Jeg påstår at de som hevder at ledere og ansatte er den største trusselen umulig forstår forskjellen på trussel og risiko.
https://t.co/Z8tEbss1lQ
A China-based threat actor has ramped up efforts to distribute the ScanBox reconnaissance framework to victims that include domestic Australian organizations and offshore energy firms in the South China Sea. https://t.co/A2djCNgwCX
Italian oil giant Eni was hit by a cyber attack, attackers compromised its computer networks, but the consequences appear to be minor.
https://t.co/m7pT3HWREb
CVE-2022-34753 (RCE in Schneider Electric SpaceLogic C-Bus Home Controller) exploitation picked up in honeypot sensors, with callback to fetch malware. Exploit is public now, so if using SE home automation make sure you patch & follow SE advice:
https://t.co/8Apiqa77MU
Greece's largest natural gas distributor DESFA confirmed on Saturday that they suffered a limited scope data breach and IT system outage following a cyberattack.
https://t.co/WsCnw9zA1I
Two years on from our Data Center move, we would like to thank everyone who provided financial support during 2020-22:
https://t.co/i3WGxhwh8R
Stay tuned for the next chapter - the Shadowserver Alliance: coming soon! Contact us now to become a founder & help secure the Internet
.@thedarktangent: “So, why are you here?” Me: Cuz @CISAgov’s success as America’s cyber defense agency is only possible if we can build TRUST w/all partners; & people don’t trust institutions—they trust people. Trust is built w/humility, vulnerability, transparency, & gratitude.
Netwrix study reveals that manufacturing organizations experienced these types of attacks more often than any other industry surveyed.
https://t.co/6lXTp7425h