433 Central Ave., 4th Floor, St. Petersburg, FL 33701 | info@poseidon-us.com | Office: (813) 563-2652

ISC Stormcast For Monday, August 29th, 2022 https://isc.sans.edu/podcastdetail.html?id=8150, (Mon, Aug 29th)

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
http://news.poseidon-us.com/SXP7dl

Dealing With False Positives when Scanning Memory Dumps for Cobalt Strike Beacons, (Sun, Aug 28th)

I updated my Cobalt Strike beacon analysis tool 1768.py to deal with false positives in Windows system's memory dumps.
http://news.poseidon-us.com/SXMp7L

Sysinternals Updates: Sysmon v14.0 and ZoomIt v6.01, (Sun, Aug 28th)

Both Sysinternals utilities (Sysmon and ZoomIt) received updates that significantly extends their scope: Sysmon can now also block actions, and ZoomIt can record videos.
http://news.poseidon-us.com/SXMcSQ

Week in review: RCE bug in GitLab patched, phishing PyPI users, Escanor malware in MS Office docs

Thoma Bravo: Securing digital identities has become a major priority In this Help Net Security interview, Andrew Almeida, Partner on the Flagship team at Thoma Bravo, talks about the firm’s recent acquisition of SailPoint, and about innovation in the enterprise identity space. Critical RCE bug in GitLab patched, update ASAP! (CVE-2022-2884) GitLab has fixed a remote code execution vulnerability (CVE-2022-2884) affecting the Community and the Enterprise Edition of its DevOps platform, and has urged admins … More → The post Week in review: RCE bug in GitLab patched, phishing PyPI users, Escanor malware in MS Office docs appeared first on Help Net Security.
http://news.poseidon-us.com/SXMVrx

Elastic appoints Ken Exner as CPO

Elastic has appointed Ken Exner as chief product officer (CPO) effective August 29, 2022. Exner will be responsible for leading engineering, product management, and product design, with a focus on enhancing the Elastic Enterprise Search, Observability, and Security solutions and delivering a cloud service to Elastic customers. Exner will report to Elastic CEO Ash Kulkarni. Exner brings three decades of experience leading product and engineering teams. Prior to joining Elastic, he spent 16 years at … More → The post Elastic appoints Ken Exner as CPO appeared first on Help Net Security.
http://news.poseidon-us.com/SXLljK

How customer experience can make or break the help desk — and the perception of IT

Outdated metrics and stressed end users can hamper the success of IT service desk teams. But with the right balance and support, service desk employees can improve customer experience.
http://news.poseidon-us.com/SXGpWs

How complicated access management protocols have impacted cloud security

During AWS re:Inforce, Amazon executives emphasized how important access control is when it comes to cloud security and why IT leaders need to ask who has access to what and why. The executives emphasized the importance of enabling multi-factor authentication (MFA) and blocking public access, with Kurt Kufeld, vice president of AWS platform, going as far as to say it “will absolutely save lives.” However, the news was met with some criticism by security and … More → The post How complicated access management protocols have impacted cloud security appeared first on Help Net Security.
http://news.poseidon-us.com/SXG4l0

How fast is the financial industry fixing its software security flaws?

Veracode released data revealing that the financial services industry ranks among the best for overall flaw percentage when compared to other industries, but has one of the lowest fix rates for software security flaws. The sector also falls to the middle of the pack for high-severity flaws, with 18 percent of applications containing a serious vulnerability, suggesting financial firms should prioritize identifying and remediating the flaws that matter most. The findings were outlined in the … More → The post How fast is the financial industry fixing its software security flaws? appeared first on Help Net Security.
http://news.poseidon-us.com/SXG4XG