Yes, it all seems a bit overwhelming right now. Get over it :)
Our Take
Ted Talks
Defenders On Their Heels
This month's theme seems to be how overwhelmed defenders are these days, particularly on the edge of the network: New exploits abound, patching lagging behind active exploitation, agencies struggling to keep up with the backlog. That's all true, but honestly it doesn't change the answer or the focus, and the old rules still apply ... for now: Patch your stuff, zero trust, MFA and identity; Oh, and talk to us if you just want to hide your network ;)
Featured Article
Why VPNs and Edge Services Are Under Siege (and What To Do About It)
Brute force attacks against VPNs, remote access applications, and other edge services are alive and well, and hammering away harder than ever. Attackers are relentlessly targeting VPNs and firewalls as entry points, while nearly 30% of breaches begin at the edge of the network.
Read About Brute Force Attacks
In Other News
- CISA flags new SD-WAN flaw as actively exploited in attacks (BleepingComputer)
- GreyNoise finds attacker activity surges before vulnerability disclosures (SC World)
- Top techniques attackers use to infiltrate your systems today (CSO Online)
- Patch windows collapse as time-to-exploit accelerates’ (CSO Online)
- State CISOs losing confidence in ability to manage cyber risks (Cybersecurity Dive)
- NIST limits vulnerability analysis as CVE backlog swells (Cybersecurity Dive)
