Secure SDLC Lessons Learned: #5 Personnel
February 26th, 2023 | 🕒
Convert Text to Speech In this blog series, I am discussing five secure software development lifecycle (SDLC) “lessons learned” from
Browsing the "Cyber Security Risk" Tag
Secure SDLC Lessons Learned: #4 Metrics
February 26th, 2023 | 🕒
Text to Voice In this blog series, I am discussing five secure software development lifecycle (SDLC) “lessons learned” from Optiv’s
Cyber Threat Intelligence – Putting out Fires or Firefighting?
February 26th, 2023 | 🕒
Convert Text to Speech When it comes to fighting malware, combating nation-state threats, and securing digital assets, the information security
What Changes will EO 13800 Bring to Strengthening the Cybersecurity of Federal Networks and Critical Infrastructure?
February 26th, 2023 | 🕒
iSpeech Anyone who has held the position of CIO or CISO in a government agency or bureau can tell you
Secure SDLC Lessons Learned: #3 Knowledge Management
February 26th, 2023 | 🕒
iSpeech.org In this blog series, I am discussing five secure software development lifecycle (SDLC) “lessons learned” from Optiv’s application security
Secure SDLC Lessons Learned: #1 Application Catalog
February 25th, 2023 | 🕒
iSpeech.org Introduction As part of Optiv’s application security practice, we spend a lot of time talking with clients about
Secure SDLC Lessons Learned: #2 Assessment Toolchain
February 25th, 2023 | 🕒
iSpeech In this blog series, I am discussing five secure software development lifecycle (SDLC) “lessons learned” from Optiv’s application security
Indicators of Compromise (IOCs) are Not Intelligence
February 23rd, 2023 | 🕒
iSpeech When discussing the topic of cyber threat intelligence, I frequently hear questions about Indicators of Compromise (IOCs). IOCs are
Control Maturity vs. Control Risk: A Client Discussion
February 23rd, 2023 | 🕒
Powered by iSpeech A client for whom I serve as CISO advisor posed an interesting question to me last week,
Recovering From a Credential Breach, Part 2
February 23rd, 2023 | 🕒
iSpeech In part 1 of this blog series, I discussed the impact of credential theft on consumers and what they
MSSQL Agent Jobs for Command Execution
February 22nd, 2023 | 🕒
Powered by iSpeech The primary purpose of the Optiv attack and penetration testing (A&P) team is to simulate adversarial threat
Pass-the-Hash | Optiv
February 19th, 2023 | 🕒
iSpeech Pass-the-hash (PtH) is an all too common form of credentials attack, especially since the advent of a tool called
-
Donate Via Wallets
-
MetaMask -
Trust Wallet -
Binance Wallet -
WalletConnect
-
-
Popular
Debian Security Advisory 5664-1 – Torchsec April 18, 2024 -----BEGIN PGP SIGNED MESSAGE-----Hash: SHA512- -------------------------------------------------------------------------Debian Security Advisory DSA-5664-1 security@debian.orghttps://www.debian.org/security/… (10)
Hackers Exploiting WP-Automatic Plugin Bug to Create… April 26, 2024 Apr 26, 2024NewsroomThreat Intelligence / Cyber Attack Threat actors are… (9)
China-Linked Hackers Suspected in ArcaneDoor… May 6, 2024 May 06, 2024NewsroomNetwork Security / Malware The recently uncovered cyber… (8)
eScan Antivirus Update Mechanism Exploited to Spread… April 24, 2024 A new malware campaign has been exploiting the updating mechanism… (7)
👥Members
-
🌍 Forum Groups
-
linktr.ee/obewyn
Gloss