Posted incyber policy
Cyber Threat Intelligence
With cyber threats becoming increasingly difficult to track and manage, proactive security approach must be taken in order to protect their assets from a breach. This requires ongoing visibility into…
Posted inAzure Security cloudsecurity cyber policy
MITRE hooks AZURE ATT&CK
MITRE's Centre for Threat-Informed Defence (CTID) and Microsoft have jointly rolled out Security Stack Mappings for Azure, aimed at bringing the former's (ATT&CK) framework into the latter's cloud platform MITRE…
Posted incyber policy
NIST Drafts Ransomware Risk Management
NIST has released a draft Cybersecurity Framework Profile for Ransomware Risk Management to help organizations prevent, respond and recover from ransomware attacks. The Ransomware Profile is intended to be used…
Posted incyber policy MITRE
D3FEND Project On MITRE
D3FEND is available through the non-profit MITRE Corporation as a catalog of defensive cybersecurity techniques and their relationships to offensive and adversary techniques to help standardise the vocabulary used to…
Posted incyber policy
Penetration Testing Standards
While going through penetration testing process, its worthwhile to post on standards and framework been followed . Below are few standards that getting followed in Penetration Testing process. 1. OSSTMM…
Posted incyber policy
Penetration Testing Approach
While going through the threats and vulnerabilities its worthwhile to write up a post on process and methods by which a vulnerability are identified and remediated. This is a first…
Posted incyber policy
Business Process Compromise
Attackers look for vulnerable practices or operational loopholes to find a entry into business. Once they have found a vulnerability, the attacker will alter part of the process to their…
Posted incyber policy cybersecurity Security
GitHub PoC Stingent Policies
GitHub announced their updated community guidelines that explain how the company will deal with exploits and malware samples hosted on their service. Security researcher uploaded the sample of ProxyLogon Vulnerability…