The CISO Times

Threat Actors See Bigger Return for Smaller Devices: The Growing Threat of Mobile Malware

Mobile devices have become indispensable to modern life, supporting both personal connectivity and professional operations.
cisotimes

Insider Threat – From Detection to Prevention

From data leaks and cybersecurity incidents enabled by careless users to the malicious theft of intellectual property (IP) or even workplace violence, insider threats continue to pose a significant ...
cisotimes

Hackers Using Azure and AWS to Spread RATs

Researchers from Cisco Talos Intelligence found that hackers are using public cloud providers like Azure and AWS to spread RATs. These cloud services allow them to setup their infrastructure with ...
cisotimes

Unveiling Volt Typhoon: A State-Sponsored Cyber Threat from China

US and global cybersecurity agencies issue a joint advisory, shedding light on the activities of a state-sponsored cyber actor called “Volt Typhoon” originating from China. The impact of Volt ...
cisotimes

Penetration Testing: Create a DNS Zone Transfer Lab

Easy Lab Setup in Minutes and Multiple Tools to Choose From DNS zone transfers use the AXFR protocol to replicate DNS records across DNS servers. If you do not protect your name servers, attackers can ...
cisotimes

88% of Boards of Directors View Cybersecurity as a Business Risk

Eighty-eight percent of Boards of Directors (BoDs) view cybersecurity as a business risk, as opposed to a technology risk, according to a new survey* from Gartner, Inc. However, only 12% of BoDs have ...
cisotimes

Discover Subdomains During A Penetration Testing Engagement

During an external penetration test, and especially if it is a black-box engagement, one of the most important steps is the discovery of subdomains used by the target company. Subdomain Enumeration is ...
cisotimes

The Internet of Medical Things and Cybersecurity Risk

The healthcare and life sciences industry continues to be plagued by cybersecurity threats. 1 According to FTI Consulting’s U.S. Healthcare & Life Sciences Industry Outlook 2023 survey, 70 percent of ...
cisotimes

The Future of Technology: Microsoft CEO Satya Nadella’s Vision of a World Without Software Applications

Microsoft CEO Satya Nadella recently made waves in the tech industry with groundbreaking predictions about the future of software. His bold statements have sparked conversations that could redefine ...
cisotimes

How To Find Domains Owned by a Company

Why Should You Find Domains Owned by a Company? During a black box, or grey box penetration testing engagement for a company, one of the main things you will need to discover is the domains owned by ...
cisotimes

Microsoft Sheds Light On The “Octo Tempest” Threat Actor

In a recent release, Microsoft has provided an extensive analysis of a relatively obscure yet highly dangerous threat actor. In their report, Microsoft has designated this group as “Octo Tempest.” ...
cisotimes

Google Warns for Hacked Cloud Accounts Used for Crypto Mining

Malicious actors were observed performing cryptocurrency mining within compromised Cloud instances. Of 50 recently compromised GCP instances, 86% of the compromised Cloud instances were used to ...