Homepage | The CISO Times

Latest

Data Transformation: Impact of Security Governance and Compliance

Data transformation occurs when raw data changes format, values, structure, or cleansing for human and computer interpretation to support organizational decision-making. Data risk and regulatory compliance requirements are designed to enforce accountability, transparency, the rule of law, and responsiveness. Data risk can have...

Cloud

The Most Common Azure Security Misconfigurations

The rise of cloud environment usage especially Microsoft Azure, has also brought new challenges for CISOs and security professionals. Following best practices will help organizations ensure that their cloud environment is operating a safe and optimal efficiency levels. Excessive Access Rights A common...

Articles

Understanding Security Risks in PDF Files

PDFs have become a universal format for sharing documents. However, threat actors have also recognized their potential as a vector for cyberattacks. In this article, we will discuss the common tactics used by malicious actors to weaponize PDF files and the...

Articles

Security Does Not Have To Be Expensive: Open-Source Tools for the Security Operation Center (SOC)

Articles

29 Essential Tools Every InfoSec Professional Must Know

Articles

NIST Announces First Four Quantum-Resistant Cryptographic Algorithms

Articles

Navigating Cloud Security Solutions: Exploring the Differences Between CASB and SASE

Articles

How to Protect Your Business From a Little Known, Shockingly Simple Hacking Technique

Articles

CrowdStrike Unveils New Counter Adversary Operations Team to Thwart Modern Breaches

Attacks & Breaches

Chinese Hackers Target US Federal Agencies: U.S. Government Agency Emails Compromised

Chinese hackers have recently breached the email accounts of a US Federal Civilian Executive Branch (FCEB) agency, as part of a larger cyberespionage campaign targeting multiple organizations. The attack highlights the pressing need for organizations to enhance their cybersecurity measures. A...

Attacks & Breaches

Ransomware Gangs Collect $449 Million in Extortion Profits: A Rising Threat to Organizations

Ransomware gangs have experienced a surge in profitability during the first half of this year, raking in over $449 million from their victims, as reported by blockchain research firm Chainalysis. However, this staggering figure may underestimate the actual totals since it...

Attacks & Breaches

CISA Issues Warnings as New Vulnerabilities in MOVEit Software Expose Sensitive Information

The federal government issues a strong warning about three recently discovered vulnerabilities in the popular MOVEit file transfer software. These vulnerabilities have played a central role in numerous breaches over the past month, leading to significant concerns about data security. The...

Attacks & Breaches

Beware of “Letscall”: Advanced Vishing Technique

Researchers have recently sounded the alarm about a sophisticated and emerging form of voice phishing (vishing) called "Letscall." This alarming technique is currently being used to target individuals in South Korea, posing a significant threat to their financial security and personal...

Attacks & Breaches

Decoding the TA453 Threat: Unleashing Advanced Malware Campaigns Targeting Windows and macOS

TA453, a sophisticated nation-state actor, has been identified as an entity closely associated with various other notorious groups such as Charming Kitten, PHOSPHORUS, and APT42. In May 2023, TA453 deviated from its usual approach of employing Microsoft Word documents with macros, and...

Five Penetration Testing Frameworks and Methodologies

Pentesting aims to evaluate information security measures through the eyes of a potential attacker with the aim of testing the effectiveness of security controls. A security practitioner tasked with penetration...

Defense in Depth – The Layered Approach to Cybersecurity

Defense In Depth is a common terminology in modern-day cybersecurity practices. It is a strategy that employs a series of mechanisms, also known as controls, to stop an attack...

How to Become a Cybersecurity Expert

Cybersecurity has become increasingly popular in the last decade. It has seen great interest from technical and non-technical people wanting to take their opportunity in the field. Security breaches...

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

CoronavirusMedicine PRO

Latest

Data Transformation: Impact of Security Governance and Compliance

The Most Common Azure Security Misconfigurations

Understanding Security Risks in PDF Files

Articles

Security Does Not Have To Be Expensive: Open-Source Tools for the Security Operation Center (SOC)

29 Essential Tools Every InfoSec Professional Must Know

NIST Announces First Four Quantum-Resistant Cryptographic Algorithms

Navigating Cloud Security Solutions: Exploring the Differences Between CASB and SASE

How to Protect Your Business From a Little Known, Shockingly Simple Hacking Technique

CrowdStrike Unveils New Counter Adversary Operations Team to Thwart Modern Breaches

Attacks & Breaches

Chinese Hackers Target US Federal Agencies: U.S. Government Agency Emails Compromised

Ransomware Gangs Collect $449 Million in Extortion Profits: A Rising Threat to Organizations

CISA Issues Warnings as New Vulnerabilities in MOVEit Software Expose Sensitive Information

Beware of “Letscall”: Advanced Vishing Technique

Decoding the TA453 Threat: Unleashing Advanced Malware Campaigns Targeting Windows and macOS

Popular

Five Penetration Testing Frameworks and Methodologies

Defense in Depth – The Layered Approach to Cybersecurity

How to Become a Cybersecurity Expert

Learning Resources

How to Become a Cybersecurity Expert

A List of Tools to Help you Detect the Log4j Vulnerability

Find Information About a Person on Instagram with OSINTgram

Penetration Testing

Five Penetration Testing Frameworks and Methodologies

A List of Tools to Help you Detect the Log4j Vulnerability

Find Information About a Person on Instagram with OSINTgram