#SecurityAnalyst

Meet clickjacking’s slicker cousin, ‘gesture jacking,’ aka ‘cross window forgery’

by

April 3, 2024 at 02:42AM Clickjacking, an attack technique repurposing web page elements, poses ongoing challenges for browsers and developers. The latest variation, “cross window forgery,” leverages user gestures to execute attacks, with potential for account takeovers. Browser makers continue efforts to reduce risks, while experts recommend defensive measures, such as randomizing ID tag values … Read more

Hands-On Review: SASE-based XDR from Cato Networks

by

February 5, 2024 at 08:45AM XDR platforms help companies detect threats by correlating indicators from security domains. Cato Networks’ “SASE-based” XDR leverages native sensors to provide detailed threat analysis. Through intuitive dashboards, analysts can assess and mitigate threats, ultimately simplifying incident response. Cato’s streamlined approach demonstrates a commitment to enhancing threat detection and response capabilities. … Read more