Brian Krebs’ Post

I believe in confirmation/at least one article that outlines the beginning of investigation and relevant findings...but if you know where this is deployed in your system, what server it sits on, what it integrates with, I'd recommend digging through logs and beginning threat hunting activities ASAP. #cybersecurity #incidentresponse #threathunting

These disclosures are always a tricky situation. My triage approach is threefold: 1. reach out to all the relevant stakeholders to see if they have accounts or relationships initiated. 2. explore logging from endpoints, DNS, and even passive DNS, when they are available. 3. put out a PSA so people are aware of what's going on. If anything is bubbled up, the IR kicks in. Preparing for events like this requires deliberate steps and collaboration: 1. Start a basic 3rd party assessment process and aggregate vendor relationships in a single place 2. Build strong relationships with legal and procurement. They are the gate keepers for suppliers and contracts 3. Communicate to the broader company about how / why 4. Minimize the process and friction and make the process simple 5. Search the list with automation or grep when these events happen

This underscore the overarching impact of supply chain attack as I opined in my last post on "supply chain attack"

Attention BI Visualization customers - yet another Supply Chain attack impacting businesses! In this case, impacting data lakes and BI information and customers using Sisense! Good day for Tableau, bad news for any Sisense customers. At Palo Alto, our Prisma Solutions offer the best code to cloud protection for these types of attacks - happy to discuss how we approach protecting the entire SDLC. #security #CloudSecurity #PaloAltoPrisma

In software/application security, like physical security, one must always be right, while attackers only need to succeed once. In the below case, seems to be a supply chain exploit/breach; this has become one of the frequent exploits. Be watchful, in simple terms guard/monitor your CI/CD and gitops pipelines. Lookout for and ensure - the 3rd party packages usage, in particular the transitive dependencies (approved list, sbom, internal repository, dependency pinning to a known version etc) - security scanning of code , library and artifact in your build pipeline and fail the pipeline if thresholds does not meet #supplychainsecurity #sbom #securityscanning

this is why you should never put all your credentials in one system. In effect you are making your security critically dependent on a third party. Such a lone relationship extends your security surface around something both critical and uncontrollable. This should be a red flag to anyone experienced in security. There have been quite a few historical whole of business hacks that have pivoted around a singular auth service. Be careful! BTW Zero Trust does not mandate a singular auth service, rather you do not trust anything by dint of where it is, always get proof of access for every operation. #security #technology #cybersecurity

Master data management can solve business-wide data fragmentation: Companies implementing master data management (MDM) stand to benefit from data refinement, cost optimisation, and enhanced security. http://dlvr.it/SwmnPp

This webinar will provide tangible use cases and recommendations for CISOs to modernize their data protection strategy and reduce data risk with Cloudflare One. Register now.

Q2 is nearly here, so get the Q1 roundup with our newsletter, where we cover everything from data security to O&M and the Golden Thread. Discover how we’re enhancing user safety with multi-factor authentication, ensuring seamless information flow with the Golden Thread, and dynamically connecting asset data between O&Ms and 3D models on our platform. Read all about it here: https://lnkd.in/eb6EPAtg #Q1Roundup #GoldenThread #DataManagement

More data, more problems. As your organization continues to amass data, it becomes more difficult to make sure everything is in its right place. The tiniest bits of data tend to get lost across platforms, grow stale, or worse, fall into the hands of the wrong users. Start using your data responsibly and fix security problems before they happen with a secure data governance system. Learn more about how to implement one within your organization: http://ow.ly/QVxv50NaHNX #DataDiscovery #OneTrustDataDiscovery