Long weekends are good for people. They're also useful for attackers. That's not fearmongering. It's an operational reality. Threat actors understand how businesses work. They know when staffing is lighter, when response times may be slower, and when IT and security teams are more likely to be…
I remember my first real dev setup. A beige tower, a copy of Turbo C++, and a dial-up connection that screamed like a fax machine having an existential crisis. The workstation was an island. What lived on it stayed on it. The biggest security risk was a floppy disk from a friend, and even then, you…
If you ask most security-conscious organizations about their priorities, the answers are usually familiar: endpoint detection and response, identity and access management, network segmentation, cloud security, vulnerability management, and more. On paper, many teams know exactly what strong security…
Three stories, one theme: control planes, supply chains, and human workflows remain high-leverage targets. This Secplicity blog follows the sequence and details covered by Marc Laliberte and Corey Nachreiner in The443 Podcast Episode 360. 1) Cisco Catalyst SD-WAN 0-Day (CVSS 10): What happened Cisco…
Sometimes supposedly small things make a huge difference. This can also be true in cyber security configurations. In recent weeks, multiple partners described very similar cyber attacks their customers faced, and in some cases, the criminals were unfortunately even successful in compromising…
In 2000, the world dodged the feared Y2K bug, avoiding major technological disruptions. The dot-com bubble was still inflating, with Internet companies booming, while France celebrated its recent victory in the 1998 FIFA World Cup. As the world looked ahead to the Sydney Olympics, mobile phones…