CISO2CISO.COM & CYBER SECURITY GROUP

CISO2CISO Last Published Stories

National Cyber Crime Agencie
Manual on Social Media Intelligence (SOCMINT) for Law Enforcement Agencies by National Cyber Crume Research & Innovation Centre – Government of India
Manual on Social Media Intelligence (SOCMINT) for Law Enforcement Agencies by National Cyber...
Wallarm
DevOps Tools and Insfrastructure Under Attack by Wallarm
DevOps Tools and Insfrastructure Under Attack by Wallarm
IST
MAPPING THE RANSOMWARE PAYMENT ECOSYSTEM BY ZOE BRAMMER – IST Institute of Security and Technology
MAPPING THE RANSOMWARE PAYMENT ECOSYSTEM BY ZOE BRAMMER – IST Institute of Security...
MANDIANT
THE DEFENDER´S ADVANTAGE – A GUIDE TO ACTIVATING CYBER DEFENSE BY MANDIANT
THE DEFENDER´S ADVANTAGE – A GUIDE TO ACTIVATING CYBER DEFENSE BY MANDIANT
esset
ESSET THREAT REPORT T2 2022
ESSET THREAT REPORT T2 2022
OECD Publishing
SECURITY OF THE DOMAIN NAME SYSTEM (DNS) – AN INTRODUCTION FOR POLICY MAKERS
SECURITY OF THE DOMAIN NAME SYSTEM (DNS) – AN INTRODUCTION FOR POLICY MAKERS
SecurityGen
Telecom Cybersecurity – 5G Protection Use Cases by SecurityGen
Telecom Cybersecurity – 5G Protection Use Cases by SecurityGen
HornetSecurity
THE 2022 HORNETSECURITY RANSOMWARE ATTACKS ANALYSIS
THE 2022 HORNETSECURITY RANSOMWARE ATTACKS ANALYSIS
MITRE
11 STRATEGIES OF A WORLD-CLASS CYBERSECURITY OPERATIONS CENTERS HIGHLIGHTS BY MITRE
11 STRATEGIES OF A WORLD-CLASS CYBERSECURITY OPERATIONS CENTERS HIGHLIGHTS BY MITRE
Krebs on Security
U.S. Govt. Apps Bundled Russian Code With Ties to Mobile Malware Developer
U.S. Govt. Apps Bundled Russian Code With Ties to Mobile Malware Developer
The Guardian UK
Medibank hacker says ransom demand was US$10m as purported abortion health records posted
Medibank hacker says ransom demand was US$10m as purported abortion health records posted
The Guardian UK
Vanuatu officials turn to phone books and typewriters, one month after cyber attack
Vanuatu officials turn to phone books and typewriters, one month after cyber attack
The Guardian UK
Is it worth taking out personal cyber insurance in case you are caught up in a data hack?
Is it worth taking out personal cyber insurance in case you are caught...
Data Breach Today
Live I Cisco Secure Insights – Protect Your Business with Security Resilience
Live I Cisco Secure Insights – Protect Your Business with Security Resilience
Data Breach Today
UK Online Safety Bill Harms Privacy & Security, Experts Say
UK Online Safety Bill Harms Privacy & Security, Experts Say
Data Breach Today
Indiana Health Entity Reports Breach Involving Tracking Code
Indiana Health Entity Reports Breach Involving Tracking Code
Data Breach Today
Meta Fined by Irish Privacy Regulator for GDPR Violations
Meta Fined by Irish Privacy Regulator for GDPR Violations
National Cyber Security
Cyber Security Toolkit for Boards – Helping board members to get to grips with cyber security by NCSC
Cyber Security Toolkit for Boards – Helping board members to get to grips...
Ankit Pangasa
Security Protocols – SSL vs TLS – ALL YOU NEED TO KNOW.
Security Protocols – SSL vs TLS – ALL YOU NEED TO KNOW.
EKOPARTY SECURITY CONFERENCE
#EKOPARTY2022 – Ekoparty is a technical security conference born in 2001. +3000 guests, single track, workshops, trainings + ❤ – World-class experts, new breakthroughs, and professional training taught by the most recognized infosec professionals.
#EKOPARTY2022 – Ekoparty is a technical security conference born in 2001. +3000 guests, single...
CISO2CISO ToolBox Series
CISO2CISO Toolbox Series – Cyber Security Blogs / Cyber Security RSS Feeds List –
CISO2CISO Toolbox Series – Cyber Security Blogs / Cyber Security RSS Feeds List...
Canadian Centre for CyberSecurity
BASELINE CYBER SECURITY CONTROLS FOR SMALL AND MEDIUM ORGANIZATIONS V1.2 by Canadian Centre for CYBERSECURITY
BASELINE CYBER SECURITY CONTROLS FOR SMALL AND MEDIUM ORGANIZATIONS V1.2 by Canadian Centre...
CRC Press
DISTRIBUTED DENIAL OF SERVICE (DDOS) ATTACKS – Classification, Attacks, Challenges and Countermeasures – CRC Press Book
DISTRIBUTED DENIAL OF SERVICE (DDOS) ATTACKS – Classification, Attacks, Challenges and Countermeasures –...
Hague Centre Strategic Stud
Cyber Arms Watch An Analysis of Stated & Perceived Offensive Cyber Capabilities by The Hague Centre for Strategic Studies
Cyber Arms Watch An Analysis of Stated & Perceived Offensive Cyber Capabilities by...
ACSC Australia
13 Questions for boards to ask about cyber security by Australian Cyber Security Centre – ACSC
13 Questions for boards to ask about cyber security by Australian Cyber Security...
CISO Forum
CISO’s – First 100 Days Roadmap – Your success as a security leader is determined largely by your first 100 days in the role.
CISO’s – First 100 Days Roadmap – Your success as a security leader...
Data Breach Today
Cybersecurity Stigma: More Victims Avoid Saying ‘Ransomware’
Cybersecurity Stigma: More Victims Avoid Saying ‘Ransomware’
csonline
Here is why you should have Cobalt Strike detection in place
Data Breach Today
Zeppelin Ransomware Proceeds Punctured by Crypto Workaround
Zeppelin Ransomware Proceeds Punctured by Crypto Workaround
Data Breach Today
Cybercrime Carnage: Cryptocurrency-Targeting Attacks Abound
Cybercrime Carnage: Cryptocurrency-Targeting Attacks Abound
Data Breach Today
Addressing the Shortage of Medical Device Cyber Talent
Addressing the Shortage of Medical Device Cyber Talent
The Guardian UK
MEPs’ spyware inquiry targeted by disinformation campaign, say experts
MEPs’ spyware inquiry targeted by disinformation campaign, say experts
The Guardian UK
Gangs of cybercriminals are expanding across Africa, investigators say
Gangs of cybercriminals are expanding across Africa, investigators say
Data Breach Today
Ransomware Group Zeppelin’s Costly Encryption Mistake
Ransomware Group Zeppelin’s Costly Encryption Mistake
ANSSI & CCA France
Organising a Cyber Crisis Management Exercise – Positioning Cyber Resilience at the Highest Level by French National Cyber Security Agency (ANSSI) – CCA France
Organising a Cyber Crisis Management Exercise – Positioning Cyber Resilience at the Highest...
PICUS
ILLUMINATING DARKSIDE – TTPs, Tools, and the Trend Towards Defense Evasion by PICUS
ILLUMINATING DARKSIDE – TTPs, Tools, and the Trend Towards Defense Evasion by PICUS
BONI YEAMIN
OPEN SOURCE SOC TOOLS BY BONI YEAMIN
OPEN SOURCE SOC TOOLS BY BONI YEAMIN
ARCTIC WOLF
Definitive Guide to SOC as a Service – The Essential Elements of Advanced Threat Detection and Response by Crystal Bedell and Mark Bouchard – ARCTIC WOLF
Definitive Guide to SOC as a Service – The Essential Elements of Advanced...
varonis
Pentesting Active Directory Environments by VARONIS
Pentesting Active Directory Environments by VARONIS
WILEY
CYBERSECURITY – BLUE TEAM TOOLKIT – A practical cybersecurity handbook for both tech and non-tech professionals by Nadean Tanner
CYBERSECURITY – BLUE TEAM TOOLKIT – A practical cybersecurity handbook for both tech...
iapp
2022 PRIVACY TECH VENDOR REPORT by IAPP
2022 PRIVACY TECH VENDOR REPORT by IAPP
UK Government
Detecting the Unknown – A Guide to Threat Hunting by UK Government
Detecting the Unknown – A Guide to Threat Hunting by UK Government
Microsoft Security
Microsoft Implements Brute Force Attack Protection for All Windows Versions – As of October 11th, All Versions of Windows Can Automatically Block Admin Brute Force Attacks.
Microsoft Implements Brute Force Attack Protection for All Windows Versions – As of...
Data Breach Today
Ontario Teachers’ Data Stolen in Ransomware Attack
Ontario Teachers’ Data Stolen in Ransomware Attack
Data Breach Today
Multiple Arrests in Coordinated African Cyber Operation
Multiple Arrests in Coordinated African Cyber Operation
Data Breach Today
Cyber Resilience Minimizes Risks for Digital Services
Cyber Resilience Minimizes Risks for Digital Services
Data Breach Today
SharkBot Trojan Spread Via Android File Manager Apps
SharkBot Trojan Spread Via Android File Manager Apps
csonline
Microsoft Azure launches DDoS IP protection for SMBs
Microsoft Azure launches DDoS IP protection for SMBs
csonline
How to reset a Kerberos password and get ahead of coming updates
How to reset a Kerberos password and get ahead of coming updates
csonline
Online retailers should prepare for a holiday season spike in bot-operated attacks
Online retailers should prepare for a holiday season spike in bot-operated attacks
The Hacker News
This Malware Installs Malicious Browser Extensions to Steal Users’ Passwords and Cryptos
This Malware Installs Malicious Browser Extensions to Steal Users’ Passwords and Cryptos
Microsoft Security
Building a Holistic Insider Risk Management Program – 5 elements that help companies have stronger data protection and security while protecting user trust by Microsoft Security
Building a Holistic Insider Risk Management Program – 5 elements that help companies...
ENDGAME
KERNEL MODE THREATS AND PRACTICAL DEFENSES BY Joe Desimone and Ganriel Landau – ENDGAME
KERNEL MODE THREATS AND PRACTICAL DEFENSES BY Joe Desimone and Ganriel Landau –...
NHTSA
Cybersecurity Best Practices for the Safety of Modern Vehicles – Updatd 2022 by NHTSA
Cybersecurity Best Practices for the Safety of Modern Vehicles – Updatd 2022 by...
CLOUDFLARE
Simplifying the way we protect SaaS applications – How to protect users and data with a Zero Trust approach by Cloudflare
Simplifying the way we protect SaaS applications – How to protect users and...
Virusbulletin.com
LAZARUS AND BYOVD – EVIL TO THE WINDOWS CORE By Peter Kalnai – Matej Havranek – ESET – virusbulletin.com
LAZARUS AND BYOVD – EVIL TO THE WINDOWS CORE By Peter Kalnai –...
Alejandro Corletti - Darfe.es
Libro Ciberseguridad – Una estrategia Informatica-Militar by Alejandro Corletti Estrada – darfE.es
Libro Ciberseguridad – Una estrategia Informatica-Militar by Alejandro Corletti Estrada – darfE.es
CYFIRMA
ADVANCED SOCIAL ENGINEERING ATTACKS DECONSTRUCTED BY CFYRMA
ADVANCED SOCIAL ENGINEERING ATTACKS DECONSTRUCTED BY CFYRMA
HADESS
TALE OF PHIHING – Some Phishing Techniques & Awareness by HADESS.IO
TALE OF PHIHING – Some Phishing Techniques & Awareness by HADESS.IO
Cobalt
The Estate of Pentesting 2022 by Cobalt
The Estate of Pentesting 2022 by Cobalt

CISO2CISO Most Viewed & Popular Stories

MITRE
11 STRATEGIES OF A WORLD-CLASS CYBERSECURITY OPERATIONS CENTERS HIGHLIGHTS BY MITRE
11 STRATEGIES OF A WORLD-CLASS CYBERSECURITY OPERATIONS CENTERS HIGHLIGHTS BY MITRE
National Cyber Security
Cyber Security Toolkit for Boards – Helping board members to get to grips with cyber security by NCSC
Cyber Security Toolkit for Boards – Helping board members to get to grips...
Codrut Andrei
Secure Software Development Lifecycle Fundamentals by Codrut Andrei
Secure Software Development Lifecycle Fundamentals by Codrut Andrei
Marcos Jaimovich
Presentación “ModoSOC in Real Life” por Marcos Jaimovich en SEGURINFO Chile 2022.
Presentación “ModoSOC in Real Life” por Marcos Jaimovich en SEGURINFO Chile 2022.
Jon Radoff
The Metaverse Value Chain – The Seven Layers of the Metaverse by Jon Radoff
The Metaverse Value Chain – The Seven Layers of the Metaverse by Jon Radoff
Americn Public Power A.
Public Power Cyber Incident Response Playbook by American Public Power Association
Public Power Cyber Incident Response Playbook by American Public Power Association
Splunk
81 Siem Very important Use Cases for your SOC by SPLUNK
81 Siem Very important Use Cases for your SOC by SPLUNK
ALLIANZ
Allianz 2022 Risk Barometer – The most important business risks for the next 12 months and beyond, based on the insight of 2,650 risk management experts from 89 countries and territories.
Allianz 2022 Risk Barometer – The most important business risks for the next...
CHECKPOINT RESEARCH
Checkpoint Cyber Attack Trend 2022 Mid Year Report by Check Point Research
Checkpoint Cyber Attack Trend 2022 Mid Year Report by Check Point Research
Joas Antonio
Guide for Multi-Cloud Read Team AWS – GCP – AZURE by Joas Antonio
Guide for Multi-Cloud Read Team AWS – GCP – AZURE by Joas Antonio
Codrut Andrei
Cybersecurity Talent Crisis Today and Tomorrow by Codrut Andrei
Cybersecurity Talent Crisis Today and Tomorrow by Codrut Andrei
Cyber Rescue Alliance
The Best Cyber Insights of 2022 by The Cyber Rescue Alliance
The Best Cyber Insights of 2022 by The Cyber Rescue Alliance
Chris Davis
Blue Team Cheat Sheets by Chris Davis
Blue Team Cheat Sheets by Chris Davis
NCSC
NCSC Cyber Security for Small Business “SMEs” Guide.
NCSC Cyber Security for Small Business “SMEs” Guide.
OCCUPYTHEWEB
Linux Basics for Hackers by Occupytheweb
Linux Basics for Hackers by Occupytheweb
Apress
Jump-start Your SOC Analyst Career – A Roadmap to Cybersecurity Success by Apress
Jump-start Your SOC Analyst Career – A Roadmap to Cybersecurity Success by Apress
Microsoft
Microsoft 365 and the NIST Cybersecurity Framework
Microsoft 365 and the NIST Cybersecurity Framework
Microsoft
Microsoft Zero Trust Maturity Model
Microsoft Zero Trust Maturity Model
Nathalie Cole
How Much 10 Companies Paid Their Virtual CISO Service in 2022 Benchmark by Nathaniel Cole
How Much 10 Companies Paid Their Virtual CISO Service in 2022 Benchmark by...
WILEY
Cybercrime Investigators Handbook by WILEY
Cybercrime Investigators Handbook by WILEY
NSA
NSA Network Infrastructure Security Guidance V1.0 March 2022
NSA Network Infrastructure Security Guidance V1.0 March 2022
ENISA
TELECOM SECURITY INCIDENTS REPORT 2021 BY ENISA
TELECOM SECURITY INCIDENTS REPORT 2021 BY ENISA
RedHat
State of Kubernetes Security Report 2022 by RedHat
State of Kubernetes Security Report 2022 by RedHat
BUTTERWORTH-HEINEMANN
Security Operations Center Guidebook – A Practical Guide for a Successful SOC
Security Operations Center Guidebook – A Practical Guide for a Successful SOC
IBM Security
How much does a data breach cost in 2022? IBM Cost of a Data Breach 2022 Report by IBM Security
How much does a data breach cost in 2022? IBM Cost of a...
FIRE EYE
The Cyber Risk Playbook – What boards of directors and executives should know about Cyber Risk by FireEye.
The Cyber Risk Playbook – What boards of directors and executives should know...
Unbound Security
The Cybersecurity Acronym Book
The Cybersecurity Acronym Book
Ciso Council
CISO Security Officer Handbook
CISO Security Officer Handbook
Splunk
Top 50 Security Threats by Splunk
Top 50 Security Threats by Splunk
Joas Antonio
100 Security Operation Tools for SOCs by Joas Antonio
100 Security Operation Tools for SOCs by Joas Antonio
iSMG
RSA Conference 2022 Compendium: 150+ Interviews and More by SMG
RSA Conference 2022 Compendium: 150+ Interviews and More by SMG
Verizon
Verizon 2022 DBIR Data Breach Investigations Report
Verizon 2022 DBIR Data Breach Investigations Report
Gartner
Gartner Unveils the Top Eight Cybersecurity Predictions for 2022-23
Gartner Unveils the Top Eight Cybersecurity Predictions for 2022-23
SentinelOne
90 DAYS A CISO´s Journey to Impact define your role !!
90 DAYS A CISO´s Journey to Impact define your role !!
help net security
Compliance does not equal security !!
Compliance does not equal security !!
Think Big Blog
Top 10 TED Talks to Learn about Cyber Security
Top 10 TED Talks to Learn about Cyber Security

Last Cyber Security News

Data Breach Today
Zeppelin Ransomware Proceeds Punctured by Crypto Workaround
Zeppelin Ransomware Proceeds Punctured by Crypto Workaround
Data Breach Today
Cybercrime Carnage: Cryptocurrency-Targeting Attacks Abound
Cybercrime Carnage: Cryptocurrency-Targeting Attacks Abound
Data Breach Today
Addressing the Shortage of Medical Device Cyber Talent
Addressing the Shortage of Medical Device Cyber Talent
The Guardian UK
MEPs’ spyware inquiry targeted by disinformation campaign, say experts
MEPs’ spyware inquiry targeted by disinformation campaign, say experts
The Guardian UK
Gangs of cybercriminals are expanding across Africa, investigators say
Gangs of cybercriminals are expanding across Africa, investigators say
Data Breach Today
Ransomware Group Zeppelin’s Costly Encryption Mistake
Ransomware Group Zeppelin’s Costly Encryption Mistake
The Hacker News
Ducktail Malware Operation Evolves with New Malicious Capabilities
Ducktail Malware Operation Evolves with New Malicious Capabilities
The Hacker News
Black Basta Ransomware Gang Actively Infiltrating U.S. Companies with Qakbot Malware
Black Basta Ransomware Gang Actively Infiltrating U.S. Companies with Qakbot Malware
csonline
The Biden administration has racked up a host of cybersecurity accomplishments
The Biden administration has racked up a host of cybersecurity accomplishments
The Hacker News
This Android File Manager App Infected Thousands of Devices with SharkBot Malware
This Android File Manager App Infected Thousands of Devices with SharkBot Malware
naked security
How to hack an unpatched Exchange server with rogue PowerShell code
How to hack an unpatched Exchange server with rogue PowerShell code
naked security
CryptoRom “pig butchering” scam sites seized, suspects arrested in US
CryptoRom “pig butchering” scam sites seized, suspects arrested in US
csonline
Meta outlines US involvement in social media disinformation in new report
Meta outlines US involvement in social media disinformation in new report
csonline
EPSS explained: How does it compare to CVSS?
EPSS explained: How does it compare to CVSS?
csonline
DUCKTAIL malware campaign targeting Facebook business and ads accounts is back
DUCKTAIL malware campaign targeting Facebook business and ads accounts is back
CSH CYBER SECURITY HUB
Revising your backup strategy in 2023
Revising your backup strategy in 2023
The Guardian UK
100 people arrested in UK’s biggest fraud investigation
100 people arrested in UK’s biggest fraud investigation
Data Breach Today
Webinar | Secure Users, Applications and Data with an SSE/SASE Approach
Webinar | Secure Users, Applications and Data with an SSE/SASE Approach
Data Breach Today
Tata Power Attack Linked to Bug in Nearly 20-Year-Old Server
Tata Power Attack Linked to Bug in Nearly 20-Year-Old Server
csonline
The Biden administration has racked up a host of cybersecurity accomplishments
Data Breach Today
How Your Organization Can Enhance Its Cybersecurity Posture
How Your Organization Can Enhance Its Cybersecurity Posture
Data Breach Today
Digital Army 2030: Modernizing Technology at Scale – Part 1
Digital Army 2030: Modernizing Technology at Scale – Part 1
Data Breach Today
US Army Banks on Cyber Defense Based on Zero Trust – Part 2
US Army Banks on Cyber Defense Based on Zero Trust – Part 2
Data Breach Today
Beating Clever Phishing Through Strong Authentication
Beating Clever Phishing Through Strong Authentication
Data Breach Today
Live I Cisco Secure Insights – Protect Your Business with Security Resilience
Live I Cisco Secure Insights – Protect Your Business with Security Resilience
The Guardian UK
Medibank hacker blog mysteriously disappears but experts warn it may return
Medibank hacker blog mysteriously disappears but experts warn it may return
Data Breach Today
Live Webinar | Migrating to a Modern Identity Platform
Live Webinar | Migrating to a Modern Identity Platform
Data Breach Today
AxLocker Ransomware Adds a Twist: Stealing Discord Tokens
AxLocker Ransomware Adds a Twist: Stealing Discord Tokens
Data Breach Today
DOJ Closes Pig-Butchering Domains Tied to Crypto Scams
DOJ Closes Pig-Butchering Domains Tied to Crypto Scams
Data Breach Today
Russian KillNet Shuts Down EU Parliament Website With DDoS
Russian KillNet Shuts Down EU Parliament Website With DDoS
Data Breach Today
Russian Hackers Now Offering Stealer as a Service
Russian Hackers Now Offering Stealer as a Service
The Hacker News
Daixin Ransomware Gang Steals 5 Million AirAsia Passengers’ and Employees’ Data
Daixin Ransomware Gang Steals 5 Million AirAsia Passengers’ and Employees’ Data
The Hacker News
Notorious Emotet Malware Returns With High-Volume Malspam Campaign
Notorious Emotet Malware Returns With High-Volume Malspam Campaign
The Hacker News
U.S. Authorities Seize Domains Used in ‘Pig butchering’ Cryptocurrency Scams
U.S. Authorities Seize Domains Used in ‘Pig butchering’ Cryptocurrency Scams
The Hacker News
Here’s How to Ensure Your Incident Response Strategy is Ready for Holiday Hackers
Here’s How to Ensure Your Incident Response Strategy is Ready for Holiday Hackers
The Hacker News
Luna Moth Gang Invests in Call Centers to Target Businesses with Callback Phishing Campaigns
Luna Moth Gang Invests in Call Centers to Target Businesses with Callback Phishing...
The Hacker News
Researchers Warn of Cyber Criminals Using Go-based Aurora Stealer Malware
Researchers Warn of Cyber Criminals Using Go-based Aurora Stealer Malware
naked security
How social media scammers buy time to steal your 2FA codes
How social media scammers buy time to steal your 2FA codes
csonline
Luna Moth callback phishing campaign leverages extortion without malware
Luna Moth callback phishing campaign leverages extortion without malware
csonline
Know thy enemy: thinking like a hacker can boost cybersecurity strategy
Know thy enemy: thinking like a hacker can boost cybersecurity strategy
Data Breach Today
Covering Data Breaches in an Ethical Way
Covering Data Breaches in an Ethical Way
Data Breach Today
Cybersecurity Analysis of the FTX Crypto Heist: Part Two
Cybersecurity Analysis of the FTX Crypto Heist: Part Two
Data Breach Today
Digital Army 2030: US Army Modernizes Technology at Scale: Part 1
Digital Army 2030: US Army Modernizes Technology at Scale: Part 1
Data Breach Today
Central Depository Attack Delays Trade Settlement in India
Central Depository Attack Delays Trade Settlement in India
Data Breach Today
Chinese APT Using Google Drive, Dropbox to Drop Malware
Chinese APT Using Google Drive, Dropbox to Drop Malware
Data Breach Today
5 Hospital Workers Charged with Selling Patient Information
5 Hospital Workers Charged with Selling Patient Information
Data Breach Today
RSA CEO Rohit Ghai on Authenticating Users to Mobile Devices
RSA CEO Rohit Ghai on Authenticating Users to Mobile Devices
The Hacker News
Google Wins Lawsuit Against Russians Linked to Blockchain-based Glupteba Botnet
Google Wins Lawsuit Against Russians Linked to Blockchain-based Glupteba Botnet

The Hacker News

This Malware Installs Malicious Browser Extensions to Steal Users’ Passwords and Cryptos
Nighthawk Likely to Become Hackers’ New Post-Exploitation Tool After Cobalt Strike
Meta Takes Down Fake Facebook and Instagram Accounts Linked to Pro-U.S. Influence Operation
Top Cyber Threats Facing E-Commerce Sites This Holiday Season
Hackers Exploiting Abandoned Boa Web Servers to Target Critical Industries
34 Russian Cybercrime Groups Stole Over 50 Million Passwords with Stealer Malware

Threatpost

Google Patches Chrome’s Fifth Zero-Day of the Year
iPhone Users Urged to Update to Patch 2 Zero-Days
Fake Reservation Links Prey on Weary Travelers
Firewall Bug Under Active Attack Triggers CISA Warning
Twitter Whistleblower Complaint: The TL;DR Version
Cybercriminals Are Selling Access to Chinese Surveillance Cameras

Naked Security

How to hack an unpatched Exchange server with rogue PowerShell code
CryptoRom “pig butchering” scam sites seized, suspects arrested in US
How social media scammers buy time to steal your 2FA codes
S3 Ep109: How one leaked email password could drain your business [Audio + Transcript]
Black Friday and retail season – watch out for PayPal “money request” scams
Firefox fixes fullscreen fakery flaw – get the update now!

Cyber Security Hub

Revising your backup strategy in 2023
Four Main Pillars Of Cloud Security
How Does CISO Strategy Prevents Threats?
The top 20 cyber security movers and shakers 2022
Over two fifths of security professionals are investing in endpoint security
Two thirds of companies spending more on cyber security in 2022

CISO2CISO Last Published Stories

CheckPoint
KEEPING YOUR EMAIL SECURE – WHO DOES IT BEST ? A Especial analysis by Checkpoint.
KEEPING YOUR EMAIL SECURE – WHO DOES IT BEST ? A Especial analysis...
Cybersecurity Top Youtube Channels
Cybersecurity 85 Top Youtube Channels on Github.com
Cybersecurity 85 Top Youtube Channels on Github.com
Salman Abdulkarim
AWS Cloud Security – The AWS Shared Responsibility Model by Salman Abdulkarim
AWS Cloud Security – The AWS Shared Responsibility Model by Salman Abdulkarim
Cynalytica
5 Targets Hackers Look for When Attacking an OT Network by Cynalytica
5 Targets Hackers Look for When Attacking an OT Network by Cynalytica
rpi
THE IoT LANDSCAPE – The next decade of the Internet of Things by rpi – As it stands, there are 13.3 billion IoT-connected devices in the world.
THE IoT LANDSCAPE – The next decade of the Internet of Things by...
FORTINET
A Solution Guide to Operational Technology (OT) Cybersecurity by Fortinet – The “air gap” between OT and IT has evaporated, and cyber threats pose a real challenge to OT organizations
A Solution Guide to Operational Technology (OT) Cybersecurity by Fortinet – The “air...
Victoria Beckman - Microsoft
Ransomware as a service (RaaS) – An explainer guide to cybercrime´s newest business model
Ransomware as a service (RaaS) – An explainer guide to cybercrime´s newest business...
SCF
Secure & Privacy by Design Principles Framework & Security & Privacy Capability Maturity Model (SP-CMM) by SCF
Secure & Privacy by Design Principles Framework & Security & Privacy Capability Maturity...
APPLIED INCIDENT RESPONSE
Windows Event Security Log Analysis
Windows Event Security Log Analysis
CAREER UP
7 Steps to your Cybersecurity Career – How to begin your career in Cibersecurity By Chris Romano, CISSP
7 Steps to your Cybersecurity Career – How to begin your career in...
Aristeidis Michail
Security Operations Center – A Business Perspective by Aristeidis Michail
Security Operations Center – A Business Perspective by Aristeidis Michail
IGNITE Technologies
RDP Penetration Testing by IGNITE Technologies
RDP Penetration Testing by IGNITE Technologies
Joas Antonio
Windows Persistence Techniques by Joas Antonio
Windows Persistence Techniques by Joas Antonio
ALEX SIDORENKO & ELENA DEMIDENKO
GUIDE TO EFFECTIVE RISK MANAGEMENT 3.0 – ALEX SIDORENKO – ELENA DEMIDENKO
GUIDE TO EFFECTIVE RISK MANAGEMENT 3.0 – ALEX SIDORENKO – ELENA DEMIDENKO
BCG Global Cybersecurity Forum
Turning a Cybersecurity Strategy Into Reality A Holistic Performance Management Framework by BCG & STC
Turning a Cybersecurity Strategy Into Reality A Holistic Performance Management Framework by BCG...
CSA Cloud Security Alliance
SaaS Governance Best Practices Cloud by CSA Cloud Security Alliance
SaaS Governance Best Practices Cloud by CSA Cloud Security Alliance
ICS2
A Resilient Cybersecurity Professionn Chart the Path Forward – ICS2 CYBERSECURITY WORKFORCE STUDY – A Growing, Engaged Workforce
A Resilient Cybersecurity Professionn Chart the Path Forward – ICS2 CYBERSECURITY WORKFORCE STUDY...
Customer Guidance for Reported Zero-day Vulnerabilities in Microsoft Exchange Server
Customer Guidance for Reported Zero-day Vulnerabilities in Microsoft Exchange Server
PWC
2022 Global Digital Trust Insights – The C-suite guide to simplifyng for cyber readiness today and tomorrow by PWC
2022 Global Digital Trust Insights – The C-suite guide to simplifyng for cyber...
CYBERSECURITY INSIDERS
THREAT HUNTING REPORT – Cybersecurity Insiders – DOMAINTOOLS 2021
THREAT HUNTING REPORT – Cybersecurity Insiders – DOMAINTOOLS 2021
HARDVARD Kennedy School
National Cyber Power Index 2022 – HARDVARD Kennedy School – BELFER CENTER for Science and International Affairs by Julia Voo, Irfan Hemani, Daniel Cassidy
National Cyber Power Index 2022 – HARDVARD Kennedy School – BELFER CENTER for...
odaseva
The State of SaaS Ransomware Attack Preparedness – A survey of cloud data decision makers in large enterprises – Large enterprises are not fully prepared for cloud ransomware attacks – August 2022 by Odaseva
The State of SaaS Ransomware Attack Preparedness – A survey of cloud data...
CIS
CIS Critical Security Controls Version 8 – Mapping to PCI Data Security Standar (PCI DSS) v4.0 – Excel template tool ready for use – This document contains mappings of the CIS Controls and Safeguards to Payment Card Industry (PCI) Data Security Standard, v4.0.
CIS Critical Security Controls Version 8 – Mapping to PCI Data Security Standar...
Microsoft
Windows 11 Security Book – Powerful security from chip to cloud – Built with zero-trust principles at the core to safeguard data and access anywhere, keeping you protected and productive.
Windows 11 Security Book – Powerful security from chip to cloud – Built...
Arizona State University
THE FUTURE OF CYBER ENABLED FINANCIAL CRIME – New Crimes, New Criminals, and Economic Warfare by ASU THREATCASTING LAB
THE FUTURE OF CYBER ENABLED FINANCIAL CRIME – New Crimes, New Criminals, and...
PEERLYST
INTRUSION DETECTION GUIDE – The fields leading experts show exactly how to detect, deter, and respond to security threats by PEERLYST
INTRUSION DETECTION GUIDE – The fields leading experts show exactly how to detect,...
CSC 2.0
2022 Annual Report on Implementation – CSC 2.0 by Jiwon Ma – Mark Montgomery
2022 Annual Report on Implementation – CSC 2.0 by Jiwon Ma – Mark...
Splunk
Five Automation Use Cases for Splunk SOAR by Splunk – Alert Enrichment , Phishing Investigation & Response, Endpoint Malware Triage, Command & Control Investigation & Containment, Threat Intelligence.
Five Automation Use Cases for Splunk SOAR by Splunk – Alert Enrichment ,...
ECIIA
2023 RISK IN FOCUS – Hot topics for internal auditors by ECIIA – VUCA context of very complex risks is coming to the world of internal audit by European Confederation of Institutes of Internal Auditing
2023 RISK IN FOCUS – Hot topics for internal auditors by ECIIA –...
Dr. Erdal Ozkaya
Hiring a CISO – Super Guide for startups by Erdal Ozkaya
Hiring a CISO – Super Guide for startups by Erdal Ozkaya
ISMS Forum & DPI
Guia Practica para la Gestion de Breachas de Datos Personas by ISMS and DPI
Guia Practica para la Gestion de Breachas de Datos Personas by ISMS and...
Argentina
Propuesta de Anteproyecto de Ley de Proteccion de Datos Personales – Ley 25326 – Agencia de Acceso a la Información Publica – Gobierno de Argentina
Propuesta de Anteproyecto de Ley de Proteccion de Datos Personales – Ley 25326...
NSA and NISA
Control System Defense – Know the Opponent by NSA and NISA
Control System Defense – Know the Opponent by NSA and NISA
Cencys
2022 State of the internet report by cencys
2022 State of the internet report by cencys
O´REILLY
10 Steps Every CISO Should Take to Secure Next-Gen Software by Cindy Blake – O´REILLY Books
10 Steps Every CISO Should Take to Secure Next-Gen Software by Cindy Blake...
TRIMARC
10 WAYS TO IMPROVE AD SECURITY QUICKLY – list of widely applicable “easy” wins for securing MS AD by TRIMARC
10 WAYS TO IMPROVE AD SECURITY QUICKLY – list of widely applicable “easy”...

CISO2CISO Most Viewed & Popular Stories

Packt
Guia de Implementacion y Estrategia de Azure cuarta edicion by Packt
Guia de Implementacion y Estrategia de Azure cuarta edicion by Packt
Practical DevSecOps
You are probably doing DevSecOps Wrong by Practical DevSecOps – DevSecOps can seem like a magical solution, but there are some elephants in the room and some practical solutions.
You are probably doing DevSecOps Wrong by Practical DevSecOps – DevSecOps can seem...
TACTICX
Offensive Microsoft Active Directory 101 – Security Holes Everywere by TACTICX – Active Directory Attack.
Offensive Microsoft Active Directory 101 – Security Holes Everywere by TACTICX – Active...
BARRACUDA
The State of Industrial Security in 2022 by Barracuda – Insecure remote access, lack of network segmentation, and insufficient automation are leaving organizations open to attacks.
The State of Industrial Security in 2022 by Barracuda – Insecure remote access,...
Tenable.cs Cloud Security
7 Habits of Highly Effective DEVSECOPS Teams whitepaper by Tenable.cs Cloud Security – DevSecOps is not just a technology shift, but a cultural change as well.
7 Habits of Highly Effective DEVSECOPS Teams whitepaper by Tenable.cs Cloud Security –...
Europol
DeepFakes Attacks – Facing reality Law enforcement and the challenge of deepfakes by EUROPOL
DeepFakes Attacks – Facing reality Law enforcement and the challenge of deepfakes by...
SecurityGen
5G Cybersecurity – Telecom Cybersecurity – Decoding the ecosystem and its vulnerabilities by SecurityGen – Telecom Security
5G Cybersecurity – Telecom Cybersecurity – Decoding the ecosystem and its vulnerabilities by...
BCG Global Cybersecurity Forum
Why Children Are Unsafe in Cyberspace ? Any effort to protect children in cyberspace must engage every participant in the online ecosystem by BCG & Global Cybersecurity Forum.
Why Children Are Unsafe in Cyberspace ? Any effort to protect children in...
European Commission
CYBER RESILIENCE ACT – New EU cybersecurity rules ensure more secure hardware and software products by European Commision
CYBER RESILIENCE ACT – New EU cybersecurity rules ensure more secure hardware and...
Joas Antonio
Game Hacking 1 – Anti Cheat Bypass by Joas Antonio
Game Hacking 1 – Anti Cheat Bypass by Joas Antonio
NIST
National Initiative for Cybersecurity Education (NICE) – Cybersecurity Workforce Framework – NIST Special Publication 800-181
National Initiative for Cybersecurity Education (NICE) – Cybersecurity Workforce Framework – NIST Special...
MSSP ALERT
TOP 250 MSSPs Services Providers 2022 edition by MSSP Alert – A CyberRisk Alliance Resource .
TOP 250 MSSPs Services Providers 2022 edition by MSSP Alert – A CyberRisk...
ENISA-EUROPA
European Cybersecurity Skills Framework by ENISA & European Union Agency for Cybersecurity. Note: If you work in HR looking for cybersecurity resources, you should read this document!
European Cybersecurity Skills Framework by ENISA & European Union Agency for Cybersecurity. Note:...
SIMPLILEARN
Cloud Computing In 6 Minutes | What Is Cloud Computing? | Cloud Computing Explained | Simplilearn
Cloud Computing In 6 Minutes | What Is Cloud Computing? | Cloud Computing...
KROLL
Cyber Risk and CFOs – Over-Confidence is Costly – 2022 Edition by KROLL
Cyber Risk and CFOs – Over-Confidence is Costly – 2022 Edition by KROLL
Ministerio del Interior España
Guía sobre controles de seguridad en sistemas OT – Ministerio del Interior de España
Guía sobre controles de seguridad en sistemas OT – Ministerio del Interior de...
CISA
CISA STRATEGIC PLAN 2023-2025 by Cybersecurity & Insfrastructure Security Agency
CISA STRATEGIC PLAN 2023-2025 by Cybersecurity & Insfrastructure Security Agency
KPMG MEXICO & IPADE
Manual del Comite de Auditoria by KPMG Mexico & IPADE
Manual del Comite de Auditoria by KPMG Mexico & IPADE
snyk
The State of Cloud Security Report 2022 – A report on the cloud risks and security challenges organizations are experiencing in 2022 by Snyk
The State of Cloud Security Report 2022 – A report on the cloud...
MVP - Minimun Viable Protection
The Importance of Risk Appetite in Risk Assessment – by MVP – Minimun Viable Protection
The Importance of Risk Appetite in Risk Assessment – by MVP – Minimun...
CROWDSTRIKE
2022 Falcon OverWatch Threat Hunting Report – NOWHERE TO HIDE by CROWDSTRIKE
2022 Falcon OverWatch Threat Hunting Report – NOWHERE TO HIDE by CROWDSTRIKE
ConversationalGeek Series
ConversationalGeek Series – Cyber Insurance by Joseph Brunsman – Delinea
ConversationalGeek Series – Cyber Insurance by Joseph Brunsman – Delinea
Microsoft
Microsoft_Azure_Active_Directory_Data_Security_Considerations by Microsoft
Microsoft_Azure_Active_Directory_Data_Security_Considerations by Microsoft
CSBS.ORG
Cybersecurity 101 – A Resource Guide for BANK EXECUTIVES – Executive Leadership of Cybersecurity
Cybersecurity 101 – A Resource Guide for BANK EXECUTIVES – Executive Leadership of...
sysdig snyk
Checklist Container Security from Code to Runtime by sysdig snyk
Checklist Container Security from Code to Runtime by sysdig snyk
Google Cybersecurity Action Team
Modern Data Security – A path to autonomic data security by Dr. Anton Chuvakin and John Stone Cybersecurity Action Team Google Cloud
Modern Data Security – A path to autonomic data security by Dr. Anton...
DNSSENSE
DNS LAYER SECURITY from the MITRE ATT&CK Perspective whitepapper by DNSSense
DNS LAYER SECURITY from the MITRE ATT&CK Perspective whitepapper by DNSSense
F-Secure Labs Hardware Security Team
THE FAKE CISCO – Hunting for backdoors in Counterfeit Cisco devices – by Dmitry Janushkevich F-Secure Labs Hardware Security Team
THE FAKE CISCO – Hunting for backdoors in Counterfeit Cisco devices – by...
Verizon Cyber Security
PSR 2022 – Payment Security Report 2022 by Verizon Cyber Security Consulting
PSR 2022 – Payment Security Report 2022 by Verizon Cyber Security Consulting
Mastercard RiskRecon
THIRD-PARTY SECURITY – RISK MANAGEMENT PLAYBOOK – A study of common , emerging, and pioneering capabilities and practices by riskrecon Mastercard
THIRD-PARTY SECURITY – RISK MANAGEMENT PLAYBOOK – A study of common , emerging,...
RELIAQUEST
Threat Hunting 101 – A Framework for Building and Maturing a Proactive Threat Hunting Program by RELIAQUEST
Threat Hunting 101 – A Framework for Building and Maturing a Proactive Threat...
MANDIANT
M-TRENDS 2022 Mandiant Special Report
M-TRENDS 2022 Mandiant Special Report
Andreessen Horowitz
State of Crypto & the Web3 An overview report
State of Crypto & the Web3 An overview report
Andreessen Horowitz
Web3 Defined – An overview report by Brainsy
Web3 Defined – An overview report by Brainsy
Telefonica Tech & Nozomi Networks
Cybersecurity in OT Environments – Case Study in the Oil & Gas Sector by Telefonica Tech & Nozomi Networks
Cybersecurity in OT Environments – Case Study in the Oil & Gas Sector...
SOPHOS
The State of Ransomware in Retail 2022 by SOPHOS –
The State of Ransomware in Retail 2022 by SOPHOS –

Last Cyber Security News

The Hacker News
Google Identifies 34 Cracked Versions of Popular Cobalt Strike Hacking Toolkit in the Wild
Google Identifies 34 Cracked Versions of Popular Cobalt Strike Hacking Toolkit in the...
The Hacker News
Been Doing It The Same Way For Years? Think Again.
Been Doing It The Same Way For Years? Think Again.
csonline
Security Recruiter Directory
Security Recruiter Directory
csonline
How remote working impacts security incident reporting
How remote working impacts security incident reporting
The Guardian UK
Cyberspace ‘a battleground’ as reports of cybercrime in Australia jump 13%
Cyberspace ‘a battleground’ as reports of cybercrime in Australia jump 13%
The Guardian UK
Woman sues Facebook for collecting personal data to target adverts
Woman sues Facebook for collecting personal data to target adverts
Data Breach Today
Cybersecurity Analysis of the FTX Crypto Heist: Part One
Cybersecurity Analysis of the FTX Crypto Heist: Part One
Data Breach Today
Cybersecurity Analysis of the FTX Crypto Heist: Part 2
Cybersecurity Analysis of the FTX Crypto Heist: Part 2
Data Breach Today
Phishing 101: How to Not Fall for a Phishing Attack
Phishing 101: How to Not Fall for a Phishing Attack
Data Breach Today
Panel Discussion: State of Digital Payments Security: Response to Risks
Panel Discussion: State of Digital Payments Security: Response to Risks
Data Breach Today
Feds Alert Healthcare, Other Sectors of Growing Hive Threats
Feds Alert Healthcare, Other Sectors of Growing Hive Threats
Data Breach Today
ID Agent’s Amelia Paro on Why Tech Alone Can’t Protect Email
ID Agent’s Amelia Paro on Why Tech Alone Can’t Protect Email
Data Breach Today
PCI Releases New Payment Standards for Mobile Devices
PCI Releases New Payment Standards for Mobile Devices
Data Breach Today
DOJ Charges 10 with BEC Targeting Federal Health Program
DOJ Charges 10 with BEC Targeting Federal Health Program
The Guardian UK
Cyberspace ‘a battleground’ as reports of cybercrime in Australia jump 13%
Data Breach Today
DOJ Charges 10 with BEC Targeting Federal Health Program
The Guardian UK
Medibank hackers release 1,500 more patient records on dark web, including mental health data
Medibank hackers release 1,500 more patient records on dark web, including mental health...
The Hacker News
Atlassian Releases Patches for Critical Flaws Affecting Crowd and Bitbucket Products
Atlassian Releases Patches for Critical Flaws Affecting Crowd and Bitbucket Products
The Hacker News
Chinese ‘Mustang Panda’ Hackers Actively Targeting Governments Worldwide
Chinese ‘Mustang Panda’ Hackers Actively Targeting Governments Worldwide
csonline
Security Recruiter Directory
The Hacker News
Microsoft Warns of Hackers Using Google Ads to Distribute Royal Ransomware
Microsoft Warns of Hackers Using Google Ads to Distribute Royal Ransomware
The Hacker News
Indian Government Publishes Draft of Digital Personal Data Protection Bill 2022
Indian Government Publishes Draft of Digital Personal Data Protection Bill 2022
Data Breach Today
Feds Alert Healthcare, Other Sectors of Growing Hive Threats
csonline
India drafts new privacy bill for transfer of personal data internationally
India drafts new privacy bill for transfer of personal data internationally
csonline
Almost half of customers have left a vendor due to poor digital trust: Report
Almost half of customers have left a vendor due to poor digital trust:...
naked security
S3 Ep109: How one leaked email password could drain your business [Audio + Transcript]
S3 Ep109: How one leaked email password could drain your business [Audio +...
The Hacker News
W4SP Stealer Constantly Targeting Python Developers in Ongoing Supply Chain Attack
W4SP Stealer Constantly Targeting Python Developers in Ongoing Supply Chain Attack
The Hacker News
Threat hunting with MITRE ATT&CK and Wazuh
Threat hunting with MITRE ATT&CK and Wazuh
The Hacker News
Hive Ransomware Attackers Extorted $100 Million from Over 1,300 Companies Worldwide
Hive Ransomware Attackers Extorted $100 Million from Over 1,300 Companies Worldwide
The Hacker News
Meta Reportedly Fires Dozens of Employees for Hijacking Users’ Facebook and Instagram Accounts
Meta Reportedly Fires Dozens of Employees for Hijacking Users’ Facebook and Instagram Accounts
The Hacker News
LodaRAT Malware Resurfaces with New Variants Employing Updated Functionalities
LodaRAT Malware Resurfaces with New Variants Employing Updated Functionalities
csonline
Noname Security releases Recon attack simulator
Noname Security releases Recon attack simulator
Krebs on Security
Researchers Quietly Cracked Zeppelin Ransomware Keys
Researchers Quietly Cracked Zeppelin Ransomware Keys
Data Breach Today
With FTX’s Collapse, Cycle of Cryptocurrency Loss Continues
With FTX’s Collapse, Cycle of Cryptocurrency Loss Continues
The Guardian UK
How to deal with the trauma of the Medibank cyber breach | Andrea Szasz
How to deal with the trauma of the Medibank cyber breach | Andrea...
Data Breach Today
Cyberwarfare’s Role in the Next National Defense Strategy
Cyberwarfare’s Role in the Next National Defense Strategy
Data Breach Today
Ransomware: Did Law Enforcement Lose Ground Early On?
Ransomware: Did Law Enforcement Lose Ground Early On?
Data Breach Today
OpenSource World – The Way We Live in the Modern App World
Data Breach Today
OpenSource World – The Way We Live in the Modern App World
OpenSource World – The Way We Live in the Modern App World
Data Breach Today
Palo Alto Networks to Buy Cider Security for at Least $195M
Palo Alto Networks to Buy Cider Security for at Least $195M
Data Breach Today
Palo Alto Networks to Buy Cider Security for at Least $195M
Palo Alto Networks to Buy Cider Security for at Least $195M
Data Breach Today
Discord Fined by French CNIL for GDPR Violations
Discord Fined by French CNIL for GDPR Violations

The Register

Meta links US military to fake social media influence campaigns
UK bans Chinese CCTV cameras on ‘sensitive’ government sites
Elon Musk to abused Twitter users: Your tormentors are coming back
Guess the most common password. Hint: We just told you
How advances in email encryption bring all-out security success
US bans Chinese telecoms imports – won’t even consider authorizing them

Graham Cluley

Operation Elaborate – UK police text 70,000 people thought to have fallen victim to iSpoof...
Smashing Security podcast #299: EV charging risks, FTX, and an ancient apocalypse
For two years security experts have been secretly decrypting systems for Zeppelin ransomware victims
Hive ransomware has extorted $100 million in 18 months, FBI warns
Ouch! Ransomware gang says it won’t attack AirAsia again due to the “chaotic organisation” and...
Police force published sexual assault victims’ names and addresses on its website

Data Breach Today

Live I Cisco Secure Insights – Protect Your Business with Security Resilience
UK Online Safety Bill Harms Privacy & Security, Experts Say
Indiana Health Entity Reports Breach Involving Tracking Code
Meta Fined by Irish Privacy Regulator for GDPR Violations
Cybersecurity Stigma: More Victims Avoid Saying ‘Ransomware’
Zeppelin Ransomware Proceeds Punctured by Crypto Workaround

SOC Prime

SOC Prime Launches Sigma Rules Bot for Threat Bounty 
Detecting QakBot Malware Campaign Leading to Black Basta Ransomware Infections
BatLoader Malware Detection: Evasive Downloader on the Rise
Sales Director (US)
Customer Success Manager (US)
SOC Prime’s Cyber Monday Deal 2022: Get Bonus Sigma Rules of Your Choice & Unlimited...

CISO2CISO Last Published Stories

FORGEROCK
2022 Consumer Identity Breach Report by ForgeRock – Eve Maler.
2022 Consumer Identity Breach Report by ForgeRock – Eve Maler.
MANDIANT
Remediation and Hardering Strategies for Microsoft 365 to Defend Against APT29 Group – Threat Intelligence White Paper by MANDIANT
Remediation and Hardering Strategies for Microsoft 365 to Defend Against APT29 Group –...
MALTEGO
Maltego handbook for Incident Response
Maltego handbook for Incident Response
Recorded Future
Malware and Vulnerability Trends Report H1 2022 by Recorded Future
Malware and Vulnerability Trends Report H1 2022 by Recorded Future
Renee Tarun y Susan Burg
CIBER SEGURO – Una guía perruna sobre seguridad en Internet para niños y adultos “todos deben leer esto” by Renee Tarun y Susan Burg
CIBER SEGURO – Una guía perruna sobre seguridad en Internet para niños y...
offs.ec
PEN-200 and the OSCP prep book by offs.ec
PEN-200 and the OSCP prep book by offs.ec
Kaspersky
The Nature of cyber incidents – Based on cyberattack investigations conducted by Kaspersky Global Emergency Response Team
The Nature of cyber incidents – Based on cyberattack investigations conducted by Kaspersky...
trendmicro
A global study EVERYTHING IS CONNECTED – Uncovering the ransomware threat from global supply chains by TRENDMICRO
A global study EVERYTHING IS CONNECTED – Uncovering the ransomware threat from global...
KPMG
Adopting secure DevOps – An introduction to transforming your organization by KPMG
Adopting secure DevOps – An introduction to transforming your organization by KPMG
Cider Security
Top 10 CI/CD Security Risks by Cider Security
Top 10 CI/CD Security Risks by Cider Security
Hidecybersecurity.com
Social Engineering and its menace by Hidecybersecurity.com
Social Engineering and its menace by Hidecybersecurity.com
CLOUDFLARE
5 Ways to Maximize the Security, Performance and Reliability of Your Online Business by Cloudflare
5 Ways to Maximize the Security, Performance and Reliability of Your Online Business...
ONAPSIS
Five Ways to Secure SAP S/4 HANA Migrations by ONAPSIS
Five Ways to Secure SAP S/4 HANA Migrations by ONAPSIS
VIRUSTOTAL
Deception at Scale – How Malware Abuses Trust by VIRUSTOTAL
Deception at Scale – How Malware Abuses Trust by VIRUSTOTAL
Ministry of Digital - Greece
CYBERSECURITY HANDBOOK – Best practices for the protection and resilience of network and information systems – Ministry of Digital Governance – Greece
CYBERSECURITY HANDBOOK – Best practices for the protection and resilience of network and...
SANS DFIR
Malware Analysis TIPS & TRICKS Poster by SANS DFIR
Malware Analysis TIPS & TRICKS Poster by SANS DFIR
IT Governance
Cyber Security and Business Resilience – Thinking strategically by IT Governance
Cyber Security and Business Resilience – Thinking strategically by IT Governance
VINOD KUMAR
Telecom Threat Detection via Stride Mapping Case Study
Telecom Threat Detection via Stride Mapping Case Study
sqrrl
HUNTPEDIA – Your Threat Hunting Knowledge Compendium by sqrrl
HUNTPEDIA – Your Threat Hunting Knowledge Compendium by sqrrl
RIT
Guide to Risk Assessment and Response by RIT
Guide to Risk Assessment and Response by RIT
ThreatLabz Team
2022 ThreatLabz Research Team – State of Ransomware Report by Zscaler
2022 ThreatLabz Research Team – State of Ransomware Report by Zscaler
McKinsey & Company
Value creation in the metaverse – The Real business of the virtual world by McKinsey & Company – June 2022
Value creation in the metaverse – The Real business of the virtual world...
CRS Report Services
The Metaverse – Concepts and Issues for Congress by Congressional Research Service
The Metaverse – Concepts and Issues for Congress by Congressional Research Service
SLOWMIST
Blockchain Security and AML Analysis Report 2022 Mid-Year by SLOWMIST
Blockchain Security and AML Analysis Report 2022 Mid-Year by SLOWMIST
HADESS
GITHUB IN THE WILD – Some examples of offensive security used github by HADESS
GITHUB IN THE WILD – Some examples of offensive security used github by...
Interpol
GUIDELINES FOR DIGITAL FORENSICS FIRST RESPONDERS BY INTERPOL
GUIDELINES FOR DIGITAL FORENSICS FIRST RESPONDERS BY INTERPOL
Joas Antonio
Ransomware Investigation (OSINT & HUNTING) Overview PT1 by Joas Antonio
Ransomware Investigation (OSINT & HUNTING) Overview PT1 by Joas Antonio
stottandmay.com
The CISO Survival Guide – Practical advice for Security Leaders by stottandmay.com
The CISO Survival Guide – Practical advice for Security Leaders by stottandmay.com
Cryptomeria Capital
The Metaverse Overview by Cryptomeria Capital – Vadim Krekotin
The Metaverse Overview by Cryptomeria Capital – Vadim Krekotin
INDUSTRIAL DEFENDER
2022 State of Operational Technology (OT) Cybersecurity Survey – Research Report by INDUSTRIAL DEFENDER
2022 State of Operational Technology (OT) Cybersecurity Survey – Research Report by INDUSTRIAL...
KPMG
The Seven ways of the agile CISO – Cyber security leadership in the age by KPMG
The Seven ways of the agile CISO – Cyber security leadership in the...
Practical DevSecOps
The 4 Pillards of DevSecOps – CAMS: 1.Culture, 2.Automation, 3.Measurement and 4.Sharing) By Practical DevSecOps
The 4 Pillards of DevSecOps – CAMS: 1.Culture, 2.Automation, 3.Measurement and 4.Sharing) By...
CLOUDSEK
Increased Cyber Attacks on the Global Health Sector by CloudSEK
Increased Cyber Attacks on the Global Health Sector by CloudSEK
HONEYWELL FORGE
Industrial Cybersecurity USB Threath Report 2022 – Threats designed for USB exploitation rise to 52%. Growth indicators slow, but threat levels remain dangerously highby by HONEYWELL FORGE
Industrial Cybersecurity USB Threath Report 2022 – Threats designed for USB exploitation rise...
CISA
SECURING THE SOFTWARE SUPPLY CHAIN – RECOMMENDED PRACTICES GUIDE FOR DEVELOPERS
SECURING THE SOFTWARE SUPPLY CHAIN – RECOMMENDED PRACTICES GUIDE FOR DEVELOPERS
Ben McCarty - No Start Press
Cyberjutsu – Cybersecurity for the Modern Ninja by Ben McCarty
Cyberjutsu – Cybersecurity for the Modern Ninja by Ben McCarty

CISO2CISO Most Viewed & Popular Stories

GSA
Zero Trust Architecture (ZTA) Buyer´s Guide by GSA
Zero Trust Architecture (ZTA) Buyer´s Guide by GSA
CSA Cloud Security Alliance
Earning Trust in the 21st Century – Cloud Security Alliance – DC (CSA-DC) Research
Earning Trust in the 21st Century – Cloud Security Alliance – DC (CSA-DC)...
CSA Cloud Security Alliance
CISO Perspectives and Progress in Deploying Zero Trust Report & Survey by Cloud Security Alliance CSA
CISO Perspectives and Progress in Deploying Zero Trust Report & Survey by Cloud...
Claudio Benavente
Attack Surface Management by Claudio Benavente Cyber Security Advisor
Attack Surface Management by Claudio Benavente Cyber Security Advisor
SCYTHE
Better Security Metrics – Hate on metrics all you want – they pay the bills. Remember, very important: everything that cannot be measured is very difficult to explain!
Better Security Metrics – Hate on metrics all you want – they pay...
CYFIRMA
HTML smuggling: A Stealthier Approach to Deliver Malware by CYFIRMA
HTML smuggling: A Stealthier Approach to Deliver Malware by CYFIRMA
DRAGOS
10 WAYS ASSET VISIBILITY BUILDS THE FOUNDATION FOR OT CYBERSECURITY – KNOWING THE DATA YOU NEED TO COLLECT ISN’T ENOUGH IF YOU DON’T HAVE FULL ASSET VISIBILITY by DRAGOS
10 WAYS ASSET VISIBILITY BUILDS THE FOUNDATION FOR OT CYBERSECURITY – KNOWING THE...
LUMU
The SOC of the Future by Jeffrey Wheat (Lumu`s CTO)
The SOC of the Future by Jeffrey Wheat (Lumu`s CTO)
World Economic Forum
The Zero Trust Model in Cybersecurity – Towards undesstanding and deployment – Community Paper – World Economic Forum
The Zero Trust Model in Cybersecurity – Towards undesstanding and deployment – Community...
CISA
CYBER ESSENTIALS STARTER KIT – The Basics for Building a Culture of Cyber Readiness – By CISA Cybersecurity and Infrastructure Security Agency
CYBER ESSENTIALS STARTER KIT – The Basics for Building a Culture of Cyber...
cybereason
Ransomware The True Cost to Business 2022 – A Global Study on Ransomware Business Impact by cybereason
Ransomware The True Cost to Business 2022 – A Global Study on Ransomware...
ONAPSIS
Four Best Practices to Align Your SAP Applications With the NIST Framework by ONAPSIS
Four Best Practices to Align Your SAP Applications With the NIST Framework by...
NIST
Automated Secure Configuration Guidance from the macOS Security Compliance Project (mSCP) – NIST Special Publication – NIST SP 800-219
Automated Secure Configuration Guidance from the macOS Security Compliance Project (mSCP) – NIST...
CISA
CISA INSIGHTS – Preparing Critical Infrastructure for Post-Quantum Cryptography
CISA INSIGHTS – Preparing Critical Infrastructure for Post-Quantum Cryptography
Codrut Andrei
Secure Software Development Lifecycle Fundamentals by Codrut Andrei
Secure Software Development Lifecycle Fundamentals by Codrut Andrei
Sittikorn Sangrattanapitak
Indicator of Attack (IoAs) and Activities – SOC-SIEM – A Detailed Explanation by GBHackers On Security
Indicator of Attack (IoAs) and Activities – SOC-SIEM – A Detailed Explanation by...
Practical DevSecOps
5 Books on Container Security you Must Read by Practical DevSecOps
5 Books on Container Security you Must Read by Practical DevSecOps
SEC ESPAÑA
INFORME SOBRE LA CIBERCRIMINALIDAD EN ESPAÑA POR SISTEMA ESTADISTICO DE CRIMINALIDAD SEC
INFORME SOBRE LA CIBERCRIMINALIDAD EN ESPAÑA POR SISTEMA ESTADISTICO DE CRIMINALIDAD SEC
IGNITE Technologies
Linux Privilege Escalation on Docker by Ignite Technologies
Linux Privilege Escalation on Docker by Ignite Technologies
Dutch Blockchain Coalition
Blockchain Security – A Framework for Trust and Adoption by Dutch Blockchain Coalition
Blockchain Security – A Framework for Trust and Adoption by Dutch Blockchain Coalition
OPEN RESEARCH SOCIETY
The Cyber Intelligence Analyst’s Cookbook by The OPEN RESEARCH SOCIETY
The Cyber Intelligence Analyst’s Cookbook by The OPEN RESEARCH SOCIETY
vmware
Global Incident Response Threat Report 2022 by vmware
Global Incident Response Threat Report 2022 by vmware
HADESS
Introduction to Doxing- OSINT methods for information gathering by HADESS
Introduction to Doxing- OSINT methods for information gathering by HADESS
Marcos Jaimovich
Presentación “ModoSOC in Real Life” por Marcos Jaimovich en SEGURINFO Chile 2022.
Presentación “ModoSOC in Real Life” por Marcos Jaimovich en SEGURINFO Chile 2022.
GOLDPHISH
FIVE COMMON TYPES OF PHISHING – EMAIL PHISHING , CLONE PHISHING , WHALING, SPEARPHISHING , POP-UP PHISHING BY GoldPhish
FIVE COMMON TYPES OF PHISHING – EMAIL PHISHING , CLONE PHISHING , WHALING,...
CLOUDFLARE
Common browser isolation challenges, and how to overcome them – The intersection of Internet browsing and Zero Trust security by CLOUDFLARE
Common browser isolation challenges, and how to overcome them – The intersection of...
National Cyber Security Centre
Joint Ventures in the Construction Sector – Information Security Best Practice Guidance by National Cyber Security Centre
Joint Ventures in the Construction Sector – Information Security Best Practice Guidance by...
OAS & GLOBAL PARTNERS
National Cybersecurity Strategies – Lessons Learned and Reflections from the Americas and Other Regions by OAS & GLOBAL PARTNERS DIGITAL
National Cybersecurity Strategies – Lessons Learned and Reflections from the Americas and Other...
Microsoft
Microsoft Cyber Signal Report August 2022 edition – Extortion Economics – Ransomware´s new business model – You Must Read !!
Microsoft Cyber Signal Report August 2022 edition – Extortion Economics – Ransomware´s new...
Silent Breach
Building an Effective Cyber Security Strategy in four parts approach by Silent Breach
Building an Effective Cyber Security Strategy in four parts approach by Silent Breach
SentinelOne
On the Board of Directors ? Beware of these 6 common Cybersecurity Myths by SentinelOne
On the Board of Directors ? Beware of these 6 common Cybersecurity Myths...
Pouyan Zamani
SNORT Rule Writing Guide by Pouyan Zamani
SNORT Rule Writing Guide by Pouyan Zamani
@ANHKWAR
The Most Complete RED TEAM & PENTEST Reference and Resources Guide by @ANHKWAR
The Most Complete RED TEAM & PENTEST Reference and Resources Guide by @ANHKWAR
Matteo Meucci and Andrew Muller
OWASP Testing Guide 4.0 by Matteo Meucci and Andrew Muller
OWASP Testing Guide 4.0 by Matteo Meucci and Andrew Muller
HEIDRICK & STRUGGLES
2022 Global Chief Information Security Officer (CISO) Survey by HEIDRICK & STRUGGLES – SPECIALITY PRACTICES TECHNOLOGY OFFICERS PRACTICE
2022 Global Chief Information Security Officer (CISO) Survey by HEIDRICK & STRUGGLES –...
International Energy Agency
Enhancing Cyber Resilience in Electricy Systems by International Energy Agency
Enhancing Cyber Resilience in Electricy Systems by International Energy Agency

Last Cyber Security News

Data Breach Today
Discord Fined by French CNIL for GDPR Violations
Discord Fined by French CNIL for GDPR Violations
Data Breach Today
HHS Needs to Modernize Its Cyber Approach: Watchdog Agency
HHS Needs to Modernize Its Cyber Approach: Watchdog Agency
Data Breach Today
HHS Needs to Modernize Its Cyber Approach: Watchdog Agency
HHS Needs to Modernize Its Cyber Approach: Watchdog Agency
Data Breach Today
Australia Unveils Plan to Counter Global Cybercrime Problem
Australia Unveils Plan to Counter Global Cybercrime Problem
Data Breach Today
Australia Unveils Plan to Counter Global Cybercrime Problem
Australia Unveils Plan to Counter Global Cybercrime Problem
The Hacker News
FBI-Wanted Leader of the Notorious Zeus Botnet Gang Arrested in Geneva
FBI-Wanted Leader of the Notorious Zeus Botnet Gang Arrested in Geneva
The Hacker News
100 Apps, Endless Security Checks
100 Apps, Endless Security Checks
The Hacker News
Chinese Hackers Using 42,000 Imposter Domains in Massive Phishing Attack Campaign
Chinese Hackers Using 42,000 Imposter Domains in Massive Phishing Attack Campaign
naked security
Black Friday and retail season – watch out for PayPal “money request” scams
Black Friday and retail season – watch out for PayPal “money request” scams
csonline
Android security: Which smartphones can enterprises trust?
Android security: Which smartphones can enterprises trust?
The Guardian UK
Australian special forces member allegedly stole and published personal data of intelligence official
Australian special forces member allegedly stole and published personal data of intelligence official
The Guardian UK
Mobiles are ‘potential goldmines’ for hostile states, MPs warned
Mobiles are ‘potential goldmines’ for hostile states, MPs warned
Data Breach Today
Palo Alto Networks to Buy Cider Security for $300M: Report
Palo Alto Networks to Buy Cider Security for $300M: Report
The Hacker News
High Severity Vulnerabilities Reported in F5 BIG-IP and BIG-IQ Devices
High Severity Vulnerabilities Reported in F5 BIG-IP and BIG-IQ Devices
The Hacker News
Iranian Hackers Compromised a U.S. Federal Agency’s Network Using Log4Shell Exploit
Iranian Hackers Compromised a U.S. Federal Agency’s Network Using Log4Shell Exploit
The Hacker News
North Korean Hackers Targeting Europe and Latin America with Updated DTrack Backdoor
North Korean Hackers Targeting Europe and Latin America with Updated DTrack Backdoor
The Hacker News
Researchers Discover Hundreds of Amazon RDS Instances Leaking Users’ Personal Data
Researchers Discover Hundreds of Amazon RDS Instances Leaking Users’ Personal Data
The Hacker News
7 Reasons to Choose an MDR Provider
7 Reasons to Choose an MDR Provider
naked security
Firefox fixes fullscreen fakery flaw – get the update now!
Firefox fixes fullscreen fakery flaw – get the update now!
csonline
Palo Alto releases PAN-OS 11.0 Nova with new evasive malware, injection attack protection
Palo Alto releases PAN-OS 11.0 Nova with new evasive malware, injection attack protection
Krebs on Security
Disneyland Malware Team: It’s a Puny World After All
Disneyland Malware Team: It’s a Puny World After All
CSH CYBER SECURITY HUB
Four Main Pillars Of Cloud Security
Four Main Pillars Of Cloud Security
CSH CYBER SECURITY HUB
How Does CISO Strategy Prevents Threats?
How Does CISO Strategy Prevents Threats?
Data Breach Today
Managing Cyber Risk in a Technology-Dependent World
Managing Cyber Risk in a Technology-Dependent World
Data Breach Today
Webinar | 5 Simple Tips to Secure Your Hybrid Workforce
Webinar | 5 Simple Tips to Secure Your Hybrid Workforce
The Guardian UK
Australian companies don’t value keeping our data safe because they have little to lose. Our laws need to change that | George Newhouse and Duncan Fine
Australian companies don’t value keeping our data safe because they have little to...
Data Breach Today
Webinar | Looking Back, Moving Forward: 3 Cybercrime Predictions for the New Year
Webinar | Looking Back, Moving Forward: 3 Cybercrime Predictions for the New Year
Data Breach Today
Qatar’s World Cup Apps Pose Privacy Concerns
Qatar’s World Cup Apps Pose Privacy Concerns
Data Breach Today
Misconfigured Server Exposed PHI of 600,000 Inmates
Misconfigured Server Exposed PHI of 600,000 Inmates
Data Breach Today
ExtraHop Taps Ex-Check Point Exec Chris Scanlan as President
ExtraHop Taps Ex-Check Point Exec Chris Scanlan as President
Data Breach Today
Iranian Hacker Group Uses Log4Shell to Cryptojack US Agency
Iranian Hacker Group Uses Log4Shell to Cryptojack US Agency
The Guardian UK
‘Really poor form’: Medibank yet to contact hundreds of customers with leaked personal data
‘Really poor form’: Medibank yet to contact hundreds of customers with leaked personal...
Data Breach Today
Ransomware Attackers Don’t Take Holidays
Ransomware Attackers Don’t Take Holidays
csonline
Meta’s new kill chain model tackles online threats
Meta’s new kill chain model tackles online threats
The Hacker News
New Updates for ESET’s Advanced Home Solutions
New Updates for ESET’s Advanced Home Solutions
The Hacker News
Multiple High-Severity Flaws Affect Widely Used OpenLiteSpeed Web Server Software
Multiple High-Severity Flaws Affect Widely Used OpenLiteSpeed Web Server Software
The Hacker News
Russian-Canadian National Charged Over Involvement in LockBit Ransomware Attacks
Russian-Canadian National Charged Over Involvement in LockBit Ransomware Attacks
The Hacker News
Experts Uncover Two Long-Running Android Spyware Campaigns Targeting Uyghurs
Experts Uncover Two Long-Running Android Spyware Campaigns Targeting Uyghurs
The Hacker News
Malicious Google Play Store App Spotted Distributing Xenomorph Banking Trojan
Malicious Google Play Store App Spotted Distributing Xenomorph Banking Trojan
The Hacker News
VPN vs. DNS Security
VPN vs. DNS Security
The Hacker News
New KmsdBot Malware Hijacking Systems for Mining Crypto and Launch DDoS Attacks
New KmsdBot Malware Hijacking Systems for Mining Crypto and Launch DDoS Attacks
The Hacker News
Worok Hackers Abuse Dropbox API to Exfiltrate Data via Backdoor Hidden in Images
Worok Hackers Abuse Dropbox API to Exfiltrate Data via Backdoor Hidden in Images

We LIve Security

10 tips to avoid Black Friday and Cyber Monday scams
Know your payment options: How to shop and pay safely this holiday season
Spyware posing as VPN apps – Week in security with Tony Anscombe
RansomBoggs: New ransomware targeting Ukraine
Spyware posing as VPN apps – Week in security with Tony Anscombe
Security fatigue is real: Here’s how to overcome it

Krebs on Security

U.S. Govt. Apps Bundled Russian Code With Ties to Mobile Malware Developer
Researchers Quietly Cracked Zeppelin Ransomware Keys
Disneyland Malware Team: It’s a Puny World After All
Top Zeus Botnet Suspect “Tank” Arrested in Geneva
Lawsuit Seeks Food Benefits Stolen By Skimmers
Patch Tuesday, November 2022 Election Edition

Info Security Magazine

Belgian Police Under Fire After Major Ransomware Leak
Orange Cyberdefense Unveils Its Security Navigator With OT Hacking Demos
Millions of Twitter Accounts Potentially Compromised
Phishing Campaign Impersonating UAE Ministry of Human Resources Grows
Elon Musk Unveils End-to-End Encrypted DMs For Twitter 2.0
Web App and API Attacks Surge 257% in Financial Services

Cyber Talk

A Q&A with Mimi Keshani, COO and Co-Founder of Hadean
Canada advances cyber security via Indo-Pacific Strategy
6 simple & straightforward Cyber Monday fraud prevention tips
27 expert cyber security predictions for 2023 that will help prevent attacks
One easy way to secure your Android
What is purple teaming and why is it useful?
CISO2CISO_FONDO_BLANCO_800_600
THE HACKER NEWS PROPIA
threadpost_800_600
WELIVESECURITY3_800_600
helpnetsecurity_800_600
CSH
CSO_ONLINE_800_600
google security blog
Theregister_small
dark_reading
naked_security
national cybersecurity center
SCHNEIER ON SECURITY3
bleepingcomputer-logo
heimdal_security
the_guardian
Security_boulevard
security_affairs
HACKER_COMBAT
SAP_SECURITY2
Krebs_on_Security
NIST
CSW Cybersecurityworks
CISO_MAG
national security agency
cisco_security_2016
CDM2
bbc news_small
world economic forum
marcos_jaimovich_security_advisor_2
SECURITY_ADVISOR_DIEGO_ESTEVE