Cybersecurity Archives

Blog

Can Prisma Cloud provide API security for your cloud?

15. March 2023

Spoiler alert: it probably can (your mileage may vary), but your cloud architecture determines whether it is the best solution. Introduction API security is getting more and more attention. We...

Blog

How could AI simplify malware attacks, and why is this worrying?

24. February 2023

AI can significantly reduce Malware development and distribution costs, giving cybercriminals an advantage over insufficiently secured targets. Read...

Blog

Diligent Management and Cybersecurity

20. February 2023

In business, cyber-attacks have become a part of reality and are no longer something that happens “out there”....

Blog

The future of AI and Quantum

14. January 2023

Artificial intelligence and quantum computing are two rapidly advancing technologies that have the potential to revolutionize a range...

Blog

Three lessons for better cybersecurity in 2023

2. January 2023

From the point of view of Conscia’s Security Operations Center (SOC), the year 2022 confirmed the fact that...

Blog

Digital Forensics: Discovering Threat Actor’s traces using Recycle Bin

6. December 2022

Criminals don’t like to leave traces. In the cyber world, that means deleting their malicious software from your...

Blog

Season’s Greetings from Cybercriminals

25. November 2022

Cybercrime is on the rise during the holiday season. Cybercriminals take advantage of Black Friday, Cyber Monday, and...

Blog

Phishing as a Service (PHaaS) – an effective attack vector for all threat actors

17. November 2022

Phishing has professionalized. It is literally available to criminals in a »as a service« model, and the most...

Blog

New 0-day vulnerabilities in Microsoft Exchange Server actively exploited

30. September 2022

Two reported 0-day vulnerabilities affecting Microsoft Exchange Server 2013, 2016, and 2019 (on-prem) tracked as CVE-2022-41040 and CVE-2022-41082...

Blog

Insider Threats: What are they and how to mitigate them

20. September 2022

While often neglected, an organization’s own personnel pose one of the biggest threats to its security. Human error...

Blog

Diving Deep: How to detect Malware Persistency pt. 1

3. August 2022

During a cyber-attack adversaries might gain access to an environment through a certain system, but that might not...

Blog

Diving Deep: How to detect Typosquatting

21. June 2022

Typosquatting is a type of social engineering attack, where a threat actor registers domains with deliberately misspelled names...

Blog

Vulnerability Spotlight: How to detect Follina the Windows MSDT 0-day

1. June 2022

Microsoft confirmed a security vulnerability tracked as CVE-2022-30190 and released it on their MSRC portal on May 30th,...

Blog

Diving Deep: Malware Injection Techniques – Part 1

31. May 2022

Malware Injection Techniques This is the first entry in the Malware Injection Techniques article series that we will...

Blog

Ransomware-as-a-Service: An infamously lucrative business model

18. May 2022

Ransomware as a type of malware is not a 21st century invention. We can trace it back to...

Blog

Conti Ransomware Gang falls apart

1. May 2022

Conti ransomware gang was infamously known as one of the most sophisticated adopters of ransomware-as-a-service (RaaS) model, earning...

Blog

Increased threat against industries leveraging ICS and SCADA devices

14. April 2022

US agencies (CISA, NSA, FBI) and Department of Energy issued a new Cybersecurity Advisory (CSA) warning on 13.04.2022...

Blog

What you need to know about the increased Digital Risks following the cyber-attacks on Ukraine

16. March 2022

Amidst the ongoing warfare, we were able to track the development of new dedicated and tailored malware (HermeticWiper...

Blog

Critical Vulnerability in Apache Log4j

13. December 2021

A critical vulnerability has been discovered in Apache Log4j (CVE-2021-22448), which has a maximum CVSS score of 10....

Blog

Is your Active Directory secure?

1. September 2021

How do you discover and assess misconfigurations and newly discovered vulnerabilities in your most critical asset – Active...

Get the latest insights in our blog, written by our own experts.

Can Prisma Cloud provide API security for your cloud?

How could AI simplify malware attacks, and why is this worrying?

Diligent Management and Cybersecurity

The future of AI and Quantum

Three lessons for better cybersecurity in 2023

Digital Forensics: Discovering Threat Actor’s traces using Recycle Bin

Season’s Greetings from Cybercriminals

Phishing as a Service (PHaaS) – an effective attack vector for all threat actors

New 0-day vulnerabilities in Microsoft Exchange Server actively exploited

Insider Threats: What are they and how to mitigate them

Diving Deep: How to detect Malware Persistency pt. 1

Diving Deep: How to detect Typosquatting

Vulnerability Spotlight: How to detect Follina the Windows MSDT 0-day

Diving Deep: Malware Injection Techniques – Part 1

Ransomware-as-a-Service: An infamously lucrative business model

Conti Ransomware Gang falls apart

Increased threat against industries leveraging ICS and SCADA devices

What you need to know about the increased Digital Risks following the cyber-attacks on Ukraine

Critical Vulnerability in Apache Log4j

Is your Active Directory secure?

Do you have any questions?

Contact