#attack-surface

[ follow ]
#cybersecurity #remote-work #malware #living-off-the-land #threat-detection #cybersecurity-strategy
Information security
fromThe Hacker News
1 day ago

3 Reasons Attackers Are Using Your Trusted Tools Against You (And Why You Don't See It Coming)

Cyber attackers increasingly exploit legitimate tools within environments, making detection difficult and expanding the attack surface organizations must manage.
from24/7 Wall St.
2 weeks ago

SentinelOne CEO: Microsoft has more vulnerabilities than any other company

When you put all your eggs in one basket with Microsoft, you lose the independent layer of protection that is separate from the operating system provider and the environment manager. Think of it like having your home security system run by the same company that built your house and holds your spare key. If that company has a problem, you have no fallback.
Information security
Information security
fromThe Hacker News
3 weeks ago

Attackers Don't Just Send Phishing Emails. They Weaponize Your SOC's Workload

Attackers deliberately overwhelm SOC analysts with high-volume phishing campaigns to delay investigations and create windows for successful breaches, making analyst capacity a critical vulnerability.
Information security
fromThe Hacker News
1 month ago

How Exposed Endpoints Increase Risk Across LLM Infrastructure

Exposed LLM endpoints with excessive permissions and long-lived credentials create a critical attack surface enabling cybercriminals to access systems, identities, and secrets.
Information security
fromInfoQ
1 month ago

BellSoft Survey Finds Container Security Practices Are Undermining Developers' Own Goals

Container security breaches are common and exacerbated by human error, bloated base images, and reliance on reactive defenses that expand production attack surfaces.
Information security
fromTechzine Global
2 months ago

Check Point launches AI-driven Exposure Management

Check Point Exposure Management centralizes exposure data, prioritizes real-world risks, and automates secure remediation across network, endpoint, cloud, email, and identity layers.
Information security
fromChannelPro
3 months ago

When everything connects, everything's at risk

The proliferation and interconnection of IoT and OT devices enlarge attack surfaces, enabling lateral movement that exposes critical systems and demands improved detection and containment.
Information security
fromSecuritymagazine
3 months ago

Should Organizations Block AI Browsers? Security Leaders Discuss

Agentic AI browsers introduce novel, systemic cybersecurity risks that can compromise many users; CISOs should block them to minimize enterprise exposure.
fromThe Hacker News
4 months ago

Webinar: The "Agentic" Trojan Horse: Why the New AI Browsers War is a Nightmare for Security Teams

For the last two decades, whether you used Chrome, Edge, or Firefox, the fundamental paradigm remained the same: a passive window through which a human user viewed and interacted with the internet. That era is over. We are currently witnessing a shift that renders the old OS-centric browser debates irrelevant. The new battleground is agentic AI browsers, and for security professionals, it represents a terrifying inversion of the traditional threat landscape.
Artificial intelligence
fromThe Hacker News
5 months ago

What AI Reveals About Web Applications- and Why It Matters

Before an attacker ever sends a payload, they've already done the work of understanding how your environment is built. They look at your login flows, your JavaScript files, your error messages, your API documentation, your GitHub repos. These are all clues that help them understand how your systems behave. AI is significantly accelerating reconnaissance and enabling attackers to map your environment with greater speed and precision.
Information security
#remote-work
more#remote-work
[ Load more ]