433 Central Ave., 4th Floor, St. Petersburg, FL 33701 | [email protected] | Office: (813) 563-2652

2023 Ransomware Trends Report – Asia Pacific and Japan Edition

Ransomware is a problem that everyone has but no one wants to talk about publicly. We asked 250 IT leaders from organizations of all sizes to open up and tell us what it was like to survive a cyber attack.
http://news.poseidon-us.com/T0Cfz0

An Example of RocketMQ Exploit Scanner, (Sat, Dec 16th)

A few months ago, RocketMQ[1], a real-time message queue platform, suffered of a nasty vulnerability referred as %%cve:2023-33246%%. I found another malicious script in the wild a few weeks ago that exploits this vulnerability. It has still today a very low VirusTotal detection score:2/60 [2] (SHA256:70710c630390dbf74a97162ab61aae78d3e18eacb41e16d3dd6bbd872fee66c5).
http://news.poseidon-us.com/T0CZsZ

CIO most likely chief to be external hire: report

The trend suggests a desire to bring outside perspectives into the tech suite as digital transformation unfolds, the research firm said.
http://news.poseidon-us.com/T0Bly2

Microsoft Releases Phi-2 Small Language Model

Microsoft this week has made available the latest version of its suite of small language models (SLM), Phi-2, in the Azure AI Studio model catalog.
http://news.poseidon-us.com/T0Bkq0

CSharp Payload Phoning to a CobaltStrike Server, (Fri, Dec 15th)

I found an interesting CSharp source code on VT a few days ago. Its score is only 3/59 (SHA256:5aebf1369b9b54cfc340f34fcc61a90872085a2833fd9bcf238f7c62a5c7620a)[1].
http://news.poseidon-us.com/T09WVP

New infosec products of the week: December 15, 2023

Here’s a look at the most interesting products from the past week, featuring releases from Censys, Confirm, Drata, Safe Security, and SpecterOps. Nemesis: Open-source offensive data enrichment and analytic pipeline Nemesis is a centralized data processing platform that ingests, enriches, and performs analytics on offensive security assessment data (i.e., data collected during penetration tests and red team engagements).​​ Nemesis was created by Lee Chagolla-Christensen, Will Schroeder, and Max Harley from SpecterOps. Drata announces Third-Party Risk … More → The post New infosec products of the week: December 15, 2023 appeared first on Help Net Security.
http://news.poseidon-us.com/T094S9

Fortifying cyber defenses: A proactive approach to ransomware resilience

Ransomware has become a pervasive threat, compromising the security and functionality of vital systems across the United States. While governmental pledges and public declarations of intent to fight cybercrime are foundational, they often lack the immediate and tangible impact necessary to counter sophisticated cyber threats. Case in point – the US recently pledged, along with 39 other countries, not to pay ransoms. In theory this makes sense: don’t pay, the bad guys don’t make money … More → The post Fortifying cyber defenses: A proactive approach to ransomware resilience appeared first on Help Net Security.
http://news.poseidon-us.com/T094Qy

Staying ahead in 2024 with top cybersecurity predictions

What will 2024 hold for the cybersecurity landscape? In this Help Net Security video, Steve Cobb, CISO at SecurityScorecard, offers his take on what professionals can expect next year. The post Staying ahead in 2024 with top cybersecurity predictions appeared first on Help Net Security.
http://news.poseidon-us.com/T06fm1