Biztonsági szemle

The U.S. has to prepare itself for inevitable cyberattacks on critical infrastructure that seek to inflict both psychological and physical damage.

[This is a Guest Diary by David Thomson, an ISC intern as part of the SANS.edu BACS program]

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

Instruction set architecture extensions are moving the cybersecurity fight from the software to the hardware layer.

So you've had a data breach, and now you need to take the next step. Here's a guide for communicators dealing with security incidents from Ashley Sawatsky of Rootly.

Ransomware group tries to claw back operations following FBI disruption, and lifts a previous ban on attacks against critical infrastructure in retaliation.

Besides unlocking supposedly secure doors, a man-in-the-middle cyberattack on physical access controllers can enable ransomware, data theft, and more.

See how Cisco DevNet discussed how to build and publish robust APIs, managing API contracts and OpenAPI documents at scale, and the challenges that come with the lifecycle management of OpenAPI documents.

Seedworm, aka MuddyWater, drops PowerShell-based malware on victims using living-off-the-land techniques.

Long gone are the days of the staffer armed with only their work-issued laptop and smartphone. This continues to have a profound impact on how enterprise security teams must handle endpoint security.