CyberCureME - Cyber Security Marketplace’s Post

🔥Today, we are excited to announce Adaptive Protection is now also integrated with Conditional Access. You can now create Conditional Access polices to automatically add users to policies in response to insider risks levels. https://lnkd.in/e2M2wVDG #microsoftpurview #conditionalaccess

🚨 Urgent Cybersecurity Alert! 🚨 A critical #vulnerability has been detected! This vulnerability poses a severe threat to Progress Flowmon web interfaces, scoring a perfect 10 out of 10 in the Common Vulnerability Scoring System. This #exploit grants attackers unauthenticated remote access via API to execute arbitrary system commands. Firemon customers are advised to upgrade to patched versions v12.3.5 or 11.1.14 immediately, followed by upgrading all Flowmon modules. Don't risk your cybersecurity—read the full article for more details. Stay secure, stay updated! 🛡️ https://lnkd.in/gJrfFg58 #CybersecurityAlert #VulnerabilityManagement #Cybersecurity #VulnerabilityAlert

Password Revolution: from passwords to passphrases Do the words 'password policy' and 'user-friendly' belong to one sentence? You bet, they do not. Organizations and Internet services demand the passwords to be complex requiring the use of special characters. But this is about to change as passwords can be set up as passphrases with spaces between words! Under the updated NIST guidelines (SP 800-63B), passwords can indeed be set up as passphrases with spaces between words. NIST now recommends using long, memorable passphrases instead of forcing users to include complex characters. The guidelines specifically highlight that length is more important than complexity for password strength. This allows for phrases (which can include spaces) to be used as passwords, improving both security and user experience. For example, a passphrase like "coffee and donuts are life" would be encouraged over a shorter, more complex password like "P@ssw0rd!" It turns out, passwords don’t need to be a cryptic cipher designed by a frustrated cat walking on a keyboard. They can be long, simple, and — dare I say it — memorable! Well, just have to wait for the updated NIST guideline to take effect and then for security polices updated by companies (can take ages;)).

🔍 Worried about your credentials possibly being leaked on the dark web? Find out they are by using these two **FREE**, powerful, easy-to-use tools from Keeper Security: 1️⃣ For Businesses: If your company email uses its own domain, use this scanner to check if any of your business credentials have been compromised. Business Scanner: https://lnkd.in/ejBC6GDH 2️⃣ For Personal/Free Emails: If you use personal/free emails, use this scanner to ensure your credentials are safe. Personal Scanner: https://lnkd.in/ejBC6GDH 🛡️ Don't wait until it's too late! Scan now and book a call with me to discuss how to protect your data and mitigate the risks of leaked credentials. Book here: https://lnkd.in/e6nk7XzJ

#WebSecurityLearning Recently, there was a database breach of an email delivery service, Resend, in which the attackers accessed recipient addresses, sender addresses, sent dates, subjects, bcc, cc, reply-tos, and last events. The attackers also performed GET, PATCH, and DELETE requests to the database. The main reason, according to the incident report (link at the bottom), is the exposure of the database API key as an environment variable on the client-side of the Resend Dashboard. 💡Key learnings and security measures we can take: 1. As a developer, double-check that private API keys are not exposed in client-side code. 2. Important databases (like the customer personal info DB in this case) should never be directly accessible through the internet. So, even if keys are accessed by bad actors, the database should not be accessible as it is not directly connected to the internet. 3. Ensure proper IAM roles are in place to access the database. 4. Use IAM roles with read-only access wherever possible. 5. The database should be in a VPC that is not accessible to the internet through an internet gateway. 6. Implement network access control lists (NACLs) and security groups to allow access through certain protocols or IP addresses only. 7. Utilize monitoring and log tools. and many more..... Thanks to Resend for making their investigation public, so that we can learn from it, and try to mitigate such attacks by following Best practices. Resend Incident Report: https://lnkd.in/e6zfPxc9 #websecurity #aws

In all the years that #BlueberryConsultants has spent thinking, testing and developing systems with extremely tough data security measures, there are certain rules that we always follow. Here are our four golden rules of #PasswordSecurity: #blog #blogpost

Safeguarding your financial data is non-negotiable. Sage Intacct has comprehensive security features that ensure your data is protected at every level. 𝗘𝗻𝗰𝗿𝘆𝗽𝘁𝗶𝗼𝗻: Sage Intacct uses encryption to protect your data both when it’s being transmitted over the internet and when it's stored on their servers, providing a double layer of security. 𝗥𝗼𝗹𝗲-𝗯𝗮𝘀𝗲𝗱 𝗮𝗰𝗰𝗲𝘀𝘀 𝗰𝗼𝗻𝘁𝗿𝗼𝗹: With role-based access control, you can manage who sees and does what. Assign specific roles to users, limit their access to what they need, and minimise data breach risks. 𝗠𝘂𝗹𝘁𝗶-𝗳𝗮𝗰𝘁𝗼𝗿 𝗮𝘂𝘁𝗵𝗲𝗻𝘁𝗶𝗰𝗮𝘁𝗶𝗼𝗻: Add an extra layer of security with multi-factor authentication. 𝗗𝗮𝘁𝗮 𝗯𝗮𝗰𝗸𝘂𝗽 𝗮𝗻𝗱 𝗱𝗶𝘀𝗮𝘀𝘁𝗲𝗿 𝗿𝗲𝗰𝗼𝘃𝗲𝗿𝘆: Your data is backed up every 4 hours and can be fully restored within 24 hours, ensuring quick recovery in case of a disaster. Sage Intacct empowers your business to focus on growth and innovation with peace of mind that your financial data is secure. Find out more about Sage Intacct: https://lnkd.in/gqt8KUAc #SageIntacct #Security #FinancialManagement #DigitalTransformation 

Data loss can happen in an instant. Find out why making regular backups of your important files is essential in maintaining the security and integrity of your personal data. #WorldBackupDay #FNBOInsights

💭 "The biggest risks are still some of the most fundamental (protecting endpoint data). And this isn’t a problem that requires elaborate technology or adding more layers to the security stack. We know how to fix endpoint security — it’s about getting back to basics, starting with putting a secure, purpose-built, and automated endpoint data backup and recovery platform in place," Todd Thorsen, CrashPlan CISO, shares in new TechRadar article. ➡️ Read more: https://bit.ly/3XD3sF6

I was always a big fan of the Active Response feature in OSSEC. It could sometimes be problematic if not properly tuned, but I always loved the idea of extracting insights from raw logs and putting them to work immediately. That's why I'm super excited that we've taken that capability and integrated it into Trunc This means that we can consolidate all your logs and start analyzing them for malicious activity. From there, we can create a list of bad IPs that you can easily integrate into your existing defensive controls. Here is an example of how it works: I manage about 20 different servers and a dozen different websites. I push all my logs into Trunc. Via Trunc, I can analyze the data, and if I see brute force attempts, multiple 500s, multiple 404s, or a slew of other activities I deem inappropriate, the system can aggregate that information based on the rules and tell me what I need to be blocking across my fleet. It's pretty neat, and over time, we'll expand this to include more detections and rules. Feel free to play with it; it has a trial and doesn't ask for card or personal information. #logmanagement #siem #networkadministration #informationsecurity https://lnkd.in/gSEiZZPH