Inside Out Security

The MITRE ATT&CK framework is a global knowledge base hub for documenting various tactics and techniques that hackers use throughout the different stages of a cyberattack. The MITRE company began...

There’s nothing hackers love more than picking low-hanging fruit in terms of systems weaknesses. And that’s exactly what a zero-day vulnerability attack does. A zero-day vulnerability is a software bug...

Businesses can face unexpected risk as the lines between corporate and personal SaaS apps begin to blur – especially as users introduce sensitive or regulated content into a corporate SaaS...

The state of Illinois has recently passed several key pieces of legislation designed to bolster the data privacy rights and protections of residents. Illinois privacy law seeks to achieve similar...

CISOs face tough choices when it comes to balancing security while getting the most of their cloud solutions. Kilian Englert and Ryan O’Boyle from the Varonis Cloud Architecture team answer...

A group known as “DeepBlueMagic” is suspected of launching a ransomware attack against Hillel Yaffe Medical Center in Israel, violating a loose “code of conduct” that many ransomware groups operate...

APIs are designed to facilitate programmatic access for application integrations and data sharing, but simple access misconfigurations in critical solutions like Salesforce can allow attackers to inappropriately access sensitive contacts,...

When it comes to password hacking, most organizations are quite familiar with brute force attacks, where cybercriminals continually guess passwords via computer algorithms tens of thousands of times in seconds...

In any organization, there are a number of automated tasks, applications, or devices running in the background of any device across a network. One of the best ways to manage...

The INVEST in America Act, which Congress is seeking to pass, provides nearly two billion dollars in funding to enhance the nation’s cybersecurity. Who should care? State, local, and tribal...