Malicious NPM Packages Exfiltrate Hundreds of Developer SSH Keys via GitHub>The Hacker News – Two malicious npm packages, warbeast2000 and kodiak2k, were found to exploit […]

When is a critical vulnerability actually dangerous?>Techzine – Erik van KlinkenNew vulnerabilities emerge daily with varying CVE scores, which can be misleading as they do […]

10 OSINT Tools We Use in Our SOCMedium – Fazle RabbiThe document extensively discusses the significance of Open Source Intelligence (OSINT) in the modern digital […]

Evolving Your SIEM Detection Rules: A Journey from Simple to Sophisticated>Databricks Blog – The blog post discusses the evolution of SIEM detection capabilities from basic […]

Cisco Patches Critical Vulnerability in Enterprise Collaboration ProductsSecurity Week – Ionut ArghireSummarize this: “Cisco on Wednesday announced patches for a critical-severity vulnerability in multiple Unified […]

New Microsoft Incident Response guides help security teams analyze suspicious activity>Microsoft Blog – Microsoft Incident ResponseMicrosoft Incident Response has introduced two one-page guides to help […]

Ivanti vulnerabilities now actively exploited in massive numbers>Malware Bytes Blog – Pieter ArntzIvanti Connect Secure and Ivanti Policy Secure Gateways have two vulnerabilities that are […]

Security Onion 2.4.40 now available including some new features and lots of bug fixes!>Security Onion Blog – Doug Burks (noreply@blogger.com)Security Onion 2\)4\)40 is now available […]

Live ATT&CK based Visibility Map with Observability & SMAP FrameworkMedium – Kaviarasan AkThis blog discusses the integration of CTID’s SMAP framework with an observability platform […]

Global IPv4 Depletion: Charges Begin Next Month! Developers Struggle to Migrate, Label IPv6 a “D…Medium – Lucas ScottHere is a summary of the key points […]