The CISO Times

Threat Actors See Bigger Return for Smaller Devices: The Growing Threat of Mobile Malware

Mobile devices have become indispensable to modern life, supporting both personal connectivity and professional operations.
cisotimes

Unveiling Volt Typhoon: A State-Sponsored Cyber Threat from China

US and global cybersecurity agencies issue a joint advisory, shedding light on the activities of a state-sponsored cyber actor called “Volt Typhoon” originating from China. The impact of Volt ...
cisotimes

The Internet of Medical Things and Cybersecurity Risk

The healthcare and life sciences industry continues to be plagued by cybersecurity threats. 1 According to FTI Consulting’s U.S. Healthcare & Life Sciences Industry Outlook 2023 survey, 70 percent of ...
cisotimes

88% of Boards of Directors View Cybersecurity as a Business Risk

Eighty-eight percent of Boards of Directors (BoDs) view cybersecurity as a business risk, as opposed to a technology risk, according to a new survey* from Gartner, Inc. However, only 12% of BoDs have ...
cisotimes

Discover Subdomains During A Penetration Testing Engagement

During an external penetration test, and especially if it is a black-box engagement, one of the most important steps is the discovery of subdomains used by the target company. Subdomain Enumeration is ...
cisotimes

ThePhish: An Open Source Phishing Email Analysis Tool

A new open source phishing email analysis tool has been published on Githhub, which helps automate the analysis process. ThePhish, was created by Emanuele Galdi, a researcher at Italian cybersecurity ...
cisotimes

The Future of Technology: Microsoft CEO Satya Nadella’s Vision of a World Without Software Applications

Microsoft CEO Satya Nadella recently made waves in the tech industry with groundbreaking predictions about the future of software. His bold statements have sparked conversations that could redefine ...
cisotimes

Google Warns for Hacked Cloud Accounts Used for Crypto Mining

Malicious actors were observed performing cryptocurrency mining within compromised Cloud instances. Of 50 recently compromised GCP instances, 86% of the compromised Cloud instances were used to ...
cisotimes

Find Information About a Person on Instagram with OSINTgram

A Free Tool to Gather Publicly Available Information Through Social Media OSINT or “Open Source INTeligence” plays a critical role in the field of cybersecurity. It can be used by your company to ...
cisotimes

Insider Threat – From Detection to Prevention

From data leaks and cybersecurity incidents enabled by careless users to the malicious theft of intellectual property (IP) or even workplace violence, insider threats continue to pose a significant ...
cisotimes

Microsoft Sheds Light On The “Octo Tempest” Threat Actor

In a recent release, Microsoft has provided an extensive analysis of a relatively obscure yet highly dangerous threat actor. In their report, Microsoft has designated this group as “Octo Tempest.” ...
cisotimes

Patch Microsoft Critical Flaw Now

Latest Microsoft security updates address a new critical flaw CVE-2022-21907 in the HTTP protocol stack which could potentially lead to remote code execution. Microsoft recommends that you install the ...