August 8, 2024 at 11:00AM After a cybersecurity incident, organizations should conduct a thorough review of the attack to understand its timeline, actions taken, and response efficiency. This post-mortem analysis helps in identifying gaps and potential improvements in processes. Sharing incident data and learnings with others in the industry enhances cybercrime prevention. Establishing a timeframe … Read more
July 3, 2024 at 08:18AM The Office of the Director of National Intelligence (ODNI) introduced a new strategy for open-source intelligence (OSINT), highlighting its significance in information gathering. The exponential growth of digital data has challenged traditional OSINT methods, but Artificial Intelligence (AI) and Machine Learning (ML) are revolutionizing the field, enabling more efficient data … Read more
April 30, 2024 at 02:53PM A new vulnerability discovered in R programming language (CVE-2024-27322) allows arbitrary code execution through specially crafted RDS and RDX files. This poses a significant threat due to extensive usage in critical sectors. It’s recommended to update to R Core v4.4.0 for mitigation, which restricts promise usage in serialization to prevent … Read more
March 18, 2024 at 10:21AM Cisco completed its $28 billion acquisition of Splunk. The networking giant paid $157 per share in cash for Splunk, a leader in data analysis, security, and observability tools. Cisco plans to use Splunk’s capabilities to enhance its solution portfolio, expecting positive cash flow and EPS impact in fiscal years 2025 … Read more
March 13, 2024 at 03:32PM In late 2023, a comparison of ChatGPT and Google Bard’s performance in handling writing security policies is discussed. Both tools are evaluated across various use cases for information security professionals, such as generating diagrams, explaining architecture, interpreting exploit code, and writing policies. Each tool showcases strengths and weaknesses in different … Read more
March 7, 2024 at 03:32PM The NCSC of Switzerland reported a data breach at Xplain caused by a ransomware attack, impacting thousands of sensitive government files. The Swiss government confirmed 65,000 leaked documents, with the majority affecting the Federal Department of Justice and Police. An investigation is ongoing, with results and cybersecurity recommendations expected to … Read more
November 21, 2023 at 08:31AM The government of Canada has confirmed a security breach in which its data was accessed after two third-party service providers were attacked. The breach potentially affects current and former government employees, members of the armed forces, and Royal Canadian Mounted Police workers. The government is currently analyzing a significant volume … Read more
November 6, 2023 at 02:18PM Travelers, a property and casualty insurance company, will acquire Corvus Insurance Holdings for $435 million. Corvus, founded in 2017, specializes in cyber insurance and uses artificial intelligence for data analysis. The acquisition will help Travelers expand its presence in the evolving cyber insurance market and gain cutting-edge capabilities in underwriting … Read more