Supply Chain Hackers LofyGang Behind Hundreds of Malicious Packages
Researchers at Checkmarx say that a cybercriminal group, LofyGang, has targeted the open-source supply chain with hundreds of malicious packages to steal credit card information, stream accounts, and promote hacking tools.
The...
Understanding the Economic Impact of Credential Stuffing Attacks
Credential stuffing attacks rose by 49% in 2020, according to one report. In this Expert Insight piece, Anastasios Arampatzis talks about simple steps companies can take to stop these attacks.
The...
State of Modern Application Security: 6 Key Takeaways For 2022
In this Expert Insight, Harshil Parikh, CEO of Tromzo, reveals findings from the company's recent State of Modern Application Security Report, a survey of 400 appsec professionals.
The post State of Modern Application Security: 6...
Spotlight: ShardSecure on Protecting Data At Rest Without Encryption
Host Paul Roberts speaks with Mark Blackmer of ShardSecure about that company’s new approach to protecting data at rest, which relies on fragmenting and scattering data to make it impossible to...
Spotlight: Operationalizing MDR with Pondurance CISO Dustin Hutchinson
Pondurance CISO Dustin Hutchison joins me to talk about how companies can operationalize MDR within their environment.
The post Spotlight: Operationalizing MDR with Pondurance CISO Dustin Hutchinson appeared first on The Security...
DEF CON: Security Holes in Deere, Case IH Shine Spotlight on Agriculture Cyber Risk
A demonstration at DEF CON of glaring flaws in software by agricultural equipment giants John Deere and Case IH raise the specter of remote, software-based attacks that could cripple farms and...
Encore Podcast: Chris Valasek on Hacking The Jeep Cherokee
With Black Hat and DEFCON upon us, we revisit a 2015 interview with Chris Valasek about his wireless, software based hack of a Chrysler Jeep Cherokee.
The post Encore Podcast: Chris...
Encore Podcast: Is Autonomous Driving Heading for a Crash?
Elon Musk is a big fan of his company’s Fully Self Driving software. But is it safe? In this encore edition of the podcast from 2018, we speak with Beau Woods...
Dispute Over Data Leak Highlights Legal Risks for UK Researchers
An expensive, months-long legal tussle between a UK engineer and a healthcare non-profit is spurring calls for reform to the country’s 30 year-old Computer Misuse Act, which Dyke and others contend...
Episode 212: China’s Stolen Data Economy (And Why We Should Care)
In this episode of the podcast (#212), Brandon Hoffman, the CISO of Intel 471 joins us to discuss that company’s latest report that looks at China’s diversified marketplace for stolen data...