Blog

Cognitive strategies for augmenting the body with a wearable, robotic arm

Scientists show that breathing may be used to control a wearable extra robotic arm in healthy individuals, without hindering control of other parts of the body.
http://news.poseidon-us.com/T0Gk9t

ISC Stormcast For Monday, December 18th, 2023 https://isc.sans.edu/podcastdetail/8782, (Mon, Dec 18th)

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
http://news.poseidon-us.com/T0Gjg2

Week in review: Apache Struts vulnerability exploit attempt, EOL Sophos firewalls get hotfix

Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: SCS 9001 2.0 reveals enhanced controls for global supply chains In this Help Net Security interview, Mike Regan, VP of Business Performance at TIA, discusses SCS 9001 Release 2.0, a certifiable standard crafted to assist organizations in operationalizing the NIST and other government guidelines and frameworks. Balancing AI advantages and risks in cybersecurity strategies In this Help Net Security interview, … More → The post Week in review: Apache Struts vulnerability exploit attempt, EOL Sophos firewalls get hotfix appeared first on Help Net Security.
http://news.poseidon-us.com/T0FTT7

2023 Ransomware Trends Report – Asia Pacific and Japan Edition

Ransomware is a problem that everyone has but no one wants to talk about publicly. We asked 250 IT leaders from organizations of all sizes to open up and tell us what it was like to survive a cyber attack.
http://news.poseidon-us.com/T0Cfz0

An Example of RocketMQ Exploit Scanner, (Sat, Dec 16th)

A few months ago, RocketMQ[1], a real-time message queue platform, suffered of a nasty vulnerability referred as %%cve:2023-33246%%. I found another malicious script in the wild a few weeks ago that exploits this vulnerability. It has still today a very low VirusTotal detection score:2/60 [2] (SHA256:70710c630390dbf74a97162ab61aae78d3e18eacb41e16d3dd6bbd872fee66c5).
http://news.poseidon-us.com/T0CZsZ

CIO most likely chief to be external hire: report

The trend suggests a desire to bring outside perspectives into the tech suite as digital transformation unfolds, the research firm said.
http://news.poseidon-us.com/T0Bly2

Microsoft Releases Phi-2 Small Language Model

Microsoft this week has made available the latest version of its suite of small language models (SLM), Phi-2, in the Azure AI Studio model catalog.
http://news.poseidon-us.com/T0Bkq0

CSharp Payload Phoning to a CobaltStrike Server, (Fri, Dec 15th)

I found an interesting CSharp source code on VT a few days ago. Its score is only 3/59 (SHA256:5aebf1369b9b54cfc340f34fcc61a90872085a2833fd9bcf238f7c62a5c7620a)[1].
http://news.poseidon-us.com/T09WVP

New infosec products of the week: December 15, 2023

Here’s a look at the most interesting products from the past week, featuring releases from Censys, Confirm, Drata, Safe Security, and SpecterOps. Nemesis: Open-source offensive data enrichment and analytic pipeline Nemesis is a centralized data processing platform that ingests, enriches, and performs analytics on offensive security assessment data (i.e., data collected during penetration tests and red team engagements).​​ Nemesis was created by Lee Chagolla-Christensen, Will Schroeder, and Max Harley from SpecterOps. Drata announces Third-Party Risk … More → The post New infosec products of the week: December 15, 2023 appeared first on Help Net Security.
http://news.poseidon-us.com/T094S9

Fortifying cyber defenses: A proactive approach to ransomware resilience

Ransomware has become a pervasive threat, compromising the security and functionality of vital systems across the United States. While governmental pledges and public declarations of intent to fight cybercrime are foundational, they often lack the immediate and tangible impact necessary to counter sophisticated cyber threats. Case in point – the US recently pledged, along with 39 other countries, not to pay ransoms. In theory this makes sense: don’t pay, the bad guys don’t make money … More → The post Fortifying cyber defenses: A proactive approach to ransomware resilience appeared first on Help Net Security.
http://news.poseidon-us.com/T094Qy