Patch now! Exchange servers attacked by Hafnium zero-days
Microsoft has detected multiple zero-day exploits being used to attack on-premises versions of Microsoft Exchange Server in limited and targeted…
Michael J. Assante ICS Security Lifetime Achievement Award
The SANS ICS Lifetime Achievement Award recognizes individuals who have contributed exceptional efforts to enhance the security of ICS on…
Industrial Control Systems Library
The SANS Industrial Control Systems Library is a central resource for all ICS Brochures detailing our courses, Posters, Surveys, Whitepapers…
Virginia Becomes the Second U.S. State to Enact Major Privacy Legislation
On March 2, 2021, Virginia’s Governor, Ralph Northam, signed the Consumer Data Protection Act into law without any further amendments.…
Ryuk ransomware develops worm-like capability
The French government’s computer emergency readiness team, that’s part of the National Cybersecurity Agency of France, or ANSSI, has discovered…
These Reinsurance Incumbents Are Fueling The Rapid Growth Of Insurtech Startups
Insurtech companies are growing quickly. But growth — including the move to become licensed insurers — comes with greater regulatory…
Privilege Escalation Attack and Defense Explained
Privilege escalation can be defined as an attack that involves gaining illicit access of elevated rights, or privileges, beyond what…
FTC to Host Digital Dark Patterns Workshop in April
On February 24, 2021, the Federal Trade Commission announced that it will hold a workshop on digital dark patterns on…
FinServ Compliance: Top 5 Considerations to Securing Your Cloud Infrastructure
Author: Kristin Manogue, Product Marketing Manager, Cloud Security Posture Management Cloud service providers have expanded their offerings into industry-specific domains.…