Aggregator

Obsidian Security has launched a new browser extension to help businesses safely use SaaS and AI apps online. The extension automatically finds and manages shadow SaaS and AI tools, blocks advanced spear-phishing attacks targeting access tokens, and gives real-time protection right in the user’s browser. It’s fast, lightweight, and private by design, already used on over a million devices across two hundred large and mid-sized enterprise customers. The solution leverages Obsidian’s insights from its network … More →

The post Obsidian’s browser extension manages shadow SaaS and AI tools appeared first on Help Net Security.

Security Operations Centers (SOCs) and Managed Security Service Providers (MSSPs) serve as the frontline defenders for organizations worldwide. The teams operate in high-pressure environments, analyzing security incidents, monitoring threats, and responding to attacks in real time. Continuous learning — especially through hands-on malware analysis training — is not just beneficial, but essential for their performance.  […]

The post How Malware Analysis Training Powers Up SOC and MSSP Teams appeared first on ANY.RUN's Cybersecurity Blog.

Email authentication used to be something only big players worried about. Not anymore. While small senders may not feel the heat yet, it’s only a matter of time before it reaches them. In this blog, we explore how authentication can be implemented at the relay level to improve deliverability, prevent abuse, and get ahead. Let’s start with a look at what this means.

The post Mail relays – Part 1 | Authenticate your outgoing mail! appeared first on Security Boulevard.

You must login to view this content

The rise of AI has unlocked unprecedented opportunities across industries, from automating tedious tasks to accelerating software development and transforming how applications are built and maintained. However, AI has also exposed critical vulnerabilities, ethical concerns, data privacy risks, and the potential for misuse or bias in decision-making processes.

The post The OWASP LLM Top 10 and Sonatype: Supply chain security appeared first on Security Boulevard.

In the current cloud-centric environment, strong API security is essential. Google's acquisition of Wiz underscores the urgent necessity for all-encompassing cloud security solutions. Organizations should focus on both governing API posture — ensuring secure configuration and deployment to reduce vulnerabilities and assure compliance — and on effective threat detection and response. Salt Security's API Protection Platform stands out by offering both aspects, integrating smoothly with cloud security platforms such as Wiz. This integration not only provides solid threat protection and highlights API posture vulnerabilities within Wiz but also supplies comprehensive API threat information that strengthens Wiz's attack chain analysis, granting organizations a cohesive and detailed perspective on their cloud security risks.

Cloud environments present complexity, and while APIs are vital, they also pose risks due to inadequate security measures and potential malicious attacks. Conventional security tools frequently fall short in evaluating API posture, including aspects such as authentication setups, data handling methods, and compliance with security best practices, along with the comprehensive analysis of API traffic necessary to identify advanced threats. Salt Security's API Protection Platform tackles this dual issue by offering continuous API discovery, runtime protection enhanced by behavioral analysis for threat detection, and essential posture governance features.

The integration of Salt Security and Wiz offers a robust solution for overseeing both API security posture and threats specific to APIs. Salt provides in-depth insights into API vulnerabilities, addressing posture gaps and ongoing attacks, which are displayed directly in the Wiz dashboard. This enables security teams to view API posture challenges alongside various other cloud security threats and risks in Wiz's comprehensive interface. By linking posture assessments and threat activities to potential attack pathways and affected cloud resources within Wiz, organizations achieve a much clearer and more actionable grasp of their overall risk landscape. For instance, if Salt identifies an API with a Broken Object Level Authorization (BOLA) vulnerability (indicating a posture gap) and detects an active exploitation attempt, this information can help Wiz emphasize the critical risk associated with this API within a broader attack context.

• Unified Visibility of API Posture and Threats: Gain a single-pane-of-glass view in Wiz, combining Salt's API posture assessments and threat detection with Wiz's comprehensive cloud security posture governance.
• Proactive Posture Governance and Threat Response: Identify and remediate API posture vulnerabilities before they can be exploited and detect and respond to active API attacks in real-time.
• Contextualized Risk Assessment with Attack Chain Visibility: Understand the real-world risk of API posture gaps and active attacks by correlating them with potential attack chains and impacted cloud resources within Wiz.
• Improved Compliance: Streamline compliance efforts by using Salt to identify posture gaps that violate regulatory requirements or internal security policies.
• Efficient Remediation and Incident Response: Utilize advanced workflows to prioritize remediation efforts based on the severity of posture vulnerabilities and their potential impact on the overall cloud environment and respond quickly and effectively to active API attacks, all visualized within Wiz.

Salt Security is dedicated to helping organizations secure their APIs and improve their overall security posture while also providing robust threat protection. By integrating with platforms like Wiz, we provide the crucial API-specific posture governance and threat detection capabilities that organizations need to thrive in the cloud.
If you want to learn more about Salt and how we can help you on your API Security journey through discovery, posture governance, and run-time threat protection, please contact us, schedule a demo, or check out our website.

‍

The post Strengthening Cloud Security: API Posture Governance, Threat Detection, and Attack Chain Visibility with Salt Security and Wiz appeared first on Security Boulevard.

CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation.

• CVE-2025-32756 Fortinet Multiple Products Stack-Based Buffer Overflow Vulnerability

These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to the federal enterprise.

Binding Operational Directive (BOD) 22-01: Reducing the Significant Risk of Known Exploited Vulnerabilities established the Known Exploited Vulnerabilities Catalog as a living list of known Common Vulnerabilities and Exposures (CVEs) that carry significant risk to the federal enterprise. BOD 22-01 requires Federal Civilian Executive Branch (FCEB) agencies to remediate identified vulnerabilities by the due date to protect FCEB networks against active threats. See the BOD 22-01 Fact Sheet for more information.

Although BOD 22-01 only applies to FCEB agencies, CISA strongly urges all organizations to reduce their exposure to cyberattacks by prioritizing timely remediation of Catalog vulnerabilities as part of their vulnerability management practice. CISA will continue to add vulnerabilities to the catalog that meet the specified criteria.

The Power of One: From Leaked Credential to Campaign Attribution Attribution has always been the elusive prize in threat intelligence. The question every CISO wants answered after an attack: “Who did this?” Historically, attribution required heavy resources, deep visibility, and sometimes even luck. But in today’s world of digital risk intelligence, one leaked credential can …

The post How One Leaked Credential Can Expose a Threat Actor appeared first on Security Boulevard.