Archive of posts with category 'Cybersecurity'
SSDLC Stage One: Security Requirements
We live in a data-driven world filled with multiple software and products that demand confidentiality, integrity, and availability at every cost. Those products also encompass critical functionalities and require a...
What is XDR?
In this era of digital technology, where technology is evolving and growing exponentially, and everything is being digitized, cyber threats and threat actors are also evolving at an alarming pace....
Updated: Understanding log4j2 vulnerability (CVE-2021-44228 + CVE-2021-45046 + CVE-2021-45105)
On December 10, 2021, cyberspace got flooded with a critical vulnerability in the popular java-based logging package log4j. The vulnerability is now called Log4Shell and published as CVE-2021-44228 with a...
How OSINT is used in cybersecurity? - Part Two
In the previous blog post on how OSINT is used in cybersecurity, we discussed what OSINT is, who uses it, and how it helps launch a cyber attack.
What is a shared responsibility model in the cloud?
Prior to cloud computing, we were used to downloading and installing applications for our use. Organizations were habitual in creating their data center, hiring IT professionals, buying servers and related...
What is phishing? How to recognize and report phishing emails?
The cybersecurity industry has seen massive growth in social engineering, especially phishing attacks, over the last few years. The recently published DBIR report in May 2021 has shared an 11%...
How OSINT is used in cybersecurity - Part One
In today’s technology-driven world, information/data is one of the most significant assets to every business and industry model. It is an evenly necessary element required to make or break the...
What is cybersecurity assessment, and what are the types of cybersecurity assessment?
The fourth industrial revolution has led to a sheer amount of technologies and advantages in the form of global digitization, which is creating an expansion in business productivity, revenues, and...
How to achieve application security with a secure software development lifecycle (SDLC)?
With the internet revolution and application modernization, our lives have been profoundly surrounded by tons of applications, be it health care applications or enterprise and database software. Everything is making...
Why the Internet of Things (IoT) security is essential, and what is OWASP’s Top 10?
IoT technologies have been with us for quite a long time, and with the passage of time and fast development of Wireless Internet and 5G, it is becoming fundamental for...
Compromise Assessment or Penetration Testing - What to choose and Why?
The previous few months have been a roller coaster ride for the entire security industry because of the emerging cyber-attacks targeting security organizations, researchers, and service providers. The rise of...
Vulnerability Assessment vs Penetration Testing - How are they different? A Quick Guide
Often, it gets hard to understand the differences between some of the security assessments as most of the security activities complement each other at many points. With the growing and...
The necessity of third-party (3P) risk assessment and the right approach to do it
For quite a good time, there has been a lot of buzz around third-party data breaches. 2020 has been a year full of cyber-attacks, and the pandemic has worked as...
Pentesting vs Bug Bounty - what to do and when
Many people consider bug bounties and Pentests (often referred to as Penetration Testing) as synonymous. If you’re relatively new to cybersecurity, it’s easy to confuse the two and not quite...
What is a Penetration Test and Why Do You Need It?
The shocking reality is that security breaches have increased by about 67% over the past five years, and in 2020 chances that more companies may eventually get hacked are high....
What is GIT Source Code Exposure Vulnerability and Why Should You Care?
Cybercrime is still a big concern. While businesses put different technologies to patch the known risk profiles, several new vulnerabilities keep springing up in fact that fresh cyberattacks are recorded...
RDP brute force attacks on rise. How to keep your business safe
According to the UNDP, the Covid-19 pandemic is the most significant predicament that has hit us since World War Two. Since its advent, countries have been racing around the clock...
Common Covid-19 Phishing Scams You Should Know
As the coronavirus wreaks havoc around the world, hackers and scammers are seizing on the chaos to launch more phishing attacks. According to research done by Barracuda, Covid-19 related emails...
How to Maintain Cybersecurity for remote workforce during Covid-19
Covid-19 is compelling businesses to permit employees to work from home! Some of the big tech companies that have been impacted by the Coronavirus crisis allowed employees to work remotely...
Never miss a story from us, subscribe to our newsletter