Collaborating Authors


Threat Intelligence Best-Practice Tips


A lot of people say threat intelligence (TI) tastes good, but few understand how to cook it. There are even fewer of those who know which processes to engage for TI to work and bring profit. Moreover, a negligible number of people know how to choose a feed provider, where to check a false positives indicator, and whether it's worthwhile to block a domain that your colleague has sent you over WhatsApp. We had two commercial APT subscriptions, ten information exchanges, about a dozen free feeds, and an extensive list of TOR exit nodes. We also used a couple of powerful reversers, master Powershell scripts, a Loki scanner and a paid VirusTotal subscription.

Distinction Between Agent-Based mostly and Community-Based mostly Inner Vulnerability Scanning - Channel969


For years, the 2 hottest strategies for inside scanning: agent-based and network-based had been thought-about to be about equal in worth, every bringing its personal strengths to bear. Nevertheless, with distant working now the norm in most if not all workplaces, it feels much more like agent-based scanning is a should, whereas network-based scanning is an non-obligatory additional. This text will go in-depth on the strengths and weaknesses of every method, however let's wind it again a second for many who aren't certain why they need to even do inside scanning within the first place. Whereas exterior vulnerability scanning can provide an excellent overview of what you appear to be to a hacker, the knowledge that may be gleaned with out entry to your programs will be restricted. Some critical vulnerabilities will be found at this stage, so it is a should for a lot of organizations, however that is not the place hackers cease.

AI's role in the future of cybersecurity


AI (opens in new tab) is revolutionizing cybersecurity (opens in new tab). From automatically detecting network irregularities, to deciding how best to allocate security (opens in new tab) defenses, some of the most data-intensive tasks are rapidly being taken over by machines that can compute at faster and higher rates than people. Joshua Saxe is VP and Chief Scientist at Sophos (opens in new tab). While AI has not been a major tool for attackers thus far, it has potential. Even now, the early examples of attackers using new, easily accessible open-source AI technology to create fake photos, videos and speech as part of phishing (opens in new tab) campaigns suggests a future where AI is widely used by criminals and nation-state cyber actors.

Difference Between Agent-Based and Network-Based Internal Vulnerability Scanning


For years, the two most popular methods for internal scanning: agent-based and network-based were considered to be about equal in value, each bringing its own strengths to bear. However, with remote working now the norm in most if not all workplaces, it feels a lot more like agent-based scanning is a must, while network-based scanning is an optional extra. This article will go in-depth on the strengths and weaknesses of each approach, but let's wind it back a second for those who aren't sure why they should even do internal scanning in the first place. While external vulnerability scanning can give a great overview of what you look like to a hacker, the information that can be gleaned without access to your systems can be limited. Some serious vulnerabilities can be discovered at this stage, so it's a must for many organizations, but that's not where hackers stop.

New deep learning tools can help us win the cyber war


For as long as humans have been fighting wars, innovation has allowed the eventual winning side to gain the upper hand. From the creation of the phalanx to the guerrilla warfare tactics that won the American Revolution to the use of air superiority to control ground warfare, we have seen military operations evolve to meet the challenges of time and place. Today's wars are fought as much in cyberspace as they are on the physical field of battle – and are being waged against organizations large and small, not just between nations and their militaries. As we've seen with the recent hybrid war between Russia and the Ukraine, cyberattacks are an important tool of modern warfare. Nation-states now use less overt ways to breach their adversary's cyber defenses, disrupting military operations and critical infrastructures such as water, electricity, traffic routing, banks, and strategic institutions.

Harnessing AI to Proactively Thwart Threats


Security teams can't protect what they don't know about. But it is not enough to just understand what they have within their organizations' environment. Defenders also need to put themselves in an adversary's shoes to understand which systems are likely to be targeted and how the attack would be carried out. Technologies such as attack surface management and attack path modeling make it possible for security teams to gain visibility into which assets adversaries can see and how they might gain access. With attack surface management, organizations are continuously discovering, classifying, and monitoring the IT infrastructure.

Identifying Cyber Threats Before They Happen: Deep Learning

#artificialintelligence, Microsoft, NVidia, and Okta all got hacked this year. In some hacks, attackers are looking to take data, while some are just trying things out. Either way, it is in the interest of companies to patch up the holes in their security systems as more attackers are learning to take advantage of them. The project I am working on now is one to prevent cyber threats like these from happening. When a company is hacked, there is a lot at stake.

What AI can (and can't) do for organisations' cyber resilience


Technologies such as artificial intelligence (AI), machine learning, the internet of things and quantum computing are expected to unlock unprecedented levels of computing power. These so-called fourth industrial revolution (4IR) technologies will power the future economy and bring new levels of efficiency and automation to businesses and consumers. AI in particular holds enormous promise for organisations battling a scourge of cyber attacks. Over the past few years, cyber attacks have been growing in volume and sophistication. The latest data from Mimecast's State of Email Security 2022 report found that 94% of South African organisations were targeted by e-mail-borne phishing attacks in the past year, and six out of every 10 fell victim to a ransomware attack.

Blockchain And AI Can Be Integrated To Aid Data Privacy


Any technology created has its purpose and goal, even if it's not known at the outset. With time, the picture becomes more apparent. The common feature of technologies is to help people solve problems and open us to a reality of doing things easier and better. However, the lack of trust is a significant threat to any technology. Artificial Intelligence(AI), as far as we can apprehend the concept, is to redefine our existence and activities through automation, data learning, and improved handling of many human tasks.

Why AI and autonomous response are crucial for cybersecurity (VB On-Demand)


Today, cybersecurity is in a state of continuous growth and improvement. In this on-demand webinar, learn how two organizations use a continuous AI feedback loop to identify vulnerabilities, harden defenses and improve the outcomes of their cybersecurity programs. The security risk landscape is in tremendous flux, and the traditional on-premises approach to cybersecurity is no longer enough. Remote work has become the norm, and outside the office walls, employees are letting down their personal security defenses. Cyber risks introduced by the supply chain via third parties are still a major vulnerability, so organizations need to think about not only their defenses but those of their suppliers to protect their priority assets and information from infiltration and exploitation.