News

The Security Ledger6d
SquareX Reveals that Employees are No Longer the Weakest Link, Browser AI Agents Are
Every security practitioner knows that employees are the weakest link in an organization, but this is no longer the case.
The Security Ledger9d
Leeds United and Reflectiz Partner to Share Insights on Proactive Web Security After Cyber Attack
Joining Graham Peck will be Isaac Moddel, VP Sales at Reflectiz, an expert in client-side security. Moddel will offer ...
The Security Ledger13d
Speaker Proposal Deadline Approaches for OpenSSL Conference 2025 in Prague
The OpenSSL Corporation and the OpenSSL Foundation are issuing a final call for speaker proposals for the inaugural OpenSSL ...
securityledger.com1mon
Attaxion Becomes the First EASM Platform to Integrate ENISA’s EU Vulnerability Database (EUVD)
Operated by the European Union Agency for Cybersecurity (ENISA), the EUVD is a publicly accessible vulnerability repository developed in response to the NIS2 Directive. It entered beta testing in ...
securityledger.com10mon
A Digital Lock Maker Tried To Squash A DEF CON Talk. It Happened Anyway. Here’s Why.
A presentation at the DEF CON conference in Las Vegas on Sunday highlighted cybersecurity holes that leave keyless electronic door locks vulnerable to getting picked – posing a serious risk to the ...
securityledger.com1y
Dragos Community Defense Program Helps Small Utilities Facing Cyber Attacks
Growing cyber attacks on small utilities, like the one on a water treatment facility in the town of Aliquippa, Pennsylvania, outside Pittsburgh, last month, has prompted one prominent operational ...
securityledger.com1y
Sickened by Software? Changing The Way We Talk About 0Days
Imagine this: you go to your local supermarket to pick up some food for a barbecue. Perusing the meat aisle, you grab a package of shrink wrapped, raw sausages. As you put them into your shopping cart ...
securityledger.com2y
The surveys speak: supply chain threats are freaking people out
Polls and surveys are of limited use in telling us exactly what people are thinking or how they’ll act. This is a lesson we (re) learn every four years, when political junkies ride the “message” of ...
securityledger.com2y
Cyberattacks on Industrial Control Systems Jumped in 2022
Cyberattacks on industrial control systems (ICS) jumped in 2022, with an 87% jump in ransomware attacks on industrial organizations and a 35% increase in the number of ransomware groups targeting ...
securityledger.com2y
Episode 246: SOARing out of Lockdown with Revelstoke Security
In this episode of the Security Ledger podcast, we interview Josh McCarthy, the co-founder of Revelstoke Security, about the challenge of launching a start-up just as the COVID pandemic was breaking ...
securityledger.com2y
Episode 244: ZuoRAT brings APT Tactics to Home Networks
That’s not the case with ZuoRAT, a mysterious Mirai variant uncovered by researchers at Lumen’s Black Lotus Labs. According to Lumen researcher Danny Adamitis (@dadamitis), ZuoRAT looked like earlier ...
securityledger.com2y
Supply Chain Hackers LofyGang Behind Hundreds of Malicious Packages - The Security Ledger with Paul F. Roberts
The security research team at Checkmarx Labs on Friday warned that an attack group called ‘LofyGang’ is responsible for 200 malicious packages linked to thousands of open source supply chain attacks ...