New Open-Source Tool Spotlight

"Threat-Informed Defense" isn't just a buzzword. The Center for Threat-Informed Defense bridges MITRE ATT&CK with actionable tools like Adversary Emulation Plans and the Attack Workbench, empowering defenders to stay ahead of real-world TTPs. #CyberDefense #MITREATTACK

Want to map security controls to adversary behavior? Check out Mappings Explorer by the Center for Threat-Informed Defense. It aligns your defense strategy directly with the MITRE ATT&CK framework. Precision matters. #ThreatIntelligence #Cybersecurity

Attack Flow helps you visualize how attackers chain techniques into full-scale operations. An indispensable tool for understanding and mitigating attack sequences. Powered by the Center for Threat-Informed Defense. #SOCtools #ThreatModeling

TRAM leverages automation to map CTI reports directly to MITRE ATT&CK tactics and techniques. Less manual work, more actionable insights. Open-source ingenuity at its best. #CyberThreats #MITREATTACK

Building effective cyber analytics requires depth; "Summiting the Pyramid" delivers frameworks to challenge adversary evasion strategies. A research-backed way to harden defenses. #CyberAnalytics #ThreatHunting

Project link on #GitHub https://github.com/center-for-threat-informed-defense

#Infosec #Cybersecurity #Software #Technology #News #CTF #Cybersecuritycareer #hacking #redteam #blueteam #purpleteam #tips #opensource #cloudsecurity

—
P.S. Found this helpful? Tap Follow for more cybersecurity tips and insights! I share weekly content for professionals and people who want to get into cyber. Happy hacking

Defending Against Credential-Based Cyberattacks: A Comprehensive Response Guide

Credential-based attacks have become the weapon of choice for cybercriminals, leveraging valid credentials to infiltrate systems undetected. Understanding the mechanics behind these attacks and implem...

https://news.lavx.hu/article/defending-against-credential-based-cyberattacks-a-comprehensive-response-guide

CVE Database Saved: Critical Cybersecurity Resource Gets 11-Month Extension

#CVE #CyberSecurity #CISA #VulnerabilityManagement #InfoSec #CyberThreats #MITRE #CVEExtension #CyberDefense #TechNews #CVEProgram #CWE #SecurityUpdate #CyberCommunity #DataProtection

Read Full Article :-
https://www.techi.com/us-extrends-support-save-mitre-cve-database/

https://www.europesays.com/1997221/ NATO allies boost cyber defense coordination, focus on improving critical infrastructure resilience #CriticalInfrastructure #CriticalInfrastructureResilience #CyberDefense #CyberThreat #Cybersecurity #Europa #europe #InfrastructureResilience #MaliciousCyber #malware #nato #OTAN #ThreatIntelligence

Google Launches Sec-Gemini v1 AI Model for Real Time Cyber Defense

#Cybersecurity #CybersecurityAI #Google #GoogleAI #SecGemini #ThreatIntelligence #AIinSecurity #CyberDefense #Mandiant

https://winbuzzer.com/2025/04/05/google-launches-sec-gemini-v1-ai-model-for-real-time-cyber-defense-xcxwbn/

Meet the Keynote Speakers for OWASP Global AppSec EU 2025 in Barcelona!

Join us May 26-30, 2025, for an incredible lineup of speakers, including two industry leaders shaping the future of cybersecurity.

Dr. Kate Labunets – Assistant Professor, Utrecht University

Sarah-Jane Madden – Director of Cyber Defense, Fortive

Register
https://owasp.glueup.com/event/123983/register/

OpenAI Backs AI Cybersec-Specialist Adaptive Security to Address AI-Powered Cyber Threats

#AI #AIsecurity #Deepfakes #Cybersecurity #AIcybercrime #AIfraud #CyberDefenses #OpenAI #AdaptiveSecurity #AIthreats #TechFunding #CyberDefense #DeepfakeDetection

https://winbuzzer.com/2025/04/03/openai-backs-ai-cybersec-specialist-adaptive-security-to-address-ai-powered-cyber-threats-xcxwbn/

#SB Technology (hereinafter referred to as "the Company") announces that #NobuhiroTsuji, a security researcher at the Company, will participate as an expert in the Japan Cybersecurity Initiative by Google Cybersecurity Research Center (hereinafter referred to as "the Initiative"), an effort to raise cybersecurity awareness in Japanese society, which is led by the Google Cybersecurity Research Center.
#CyberDefense #Japan #SoftBank #CyberSecurity
https://www.softbanktech.co.jp/en/news/topics/info/2025/003/

New VanHelsing Ransomware Expands Across Platforms, Targeting Enterprises with Lucrative Payouts

#Cybersecurity #VanHelsingRansomware #Ransomware #ThreatIntel #CyberThreats #Malware #EnterpriseSecurity #Cybercrime #CyberDefense #Infosec

https://winbuzzer.com/2025/03/25/new-vanhelsing-ransomware-expands-across-platforms-targeting-enterprises-with-lucrative-payouts-xcxwbn/

#Cloudflare announced that it closed all HTTP connections and it is now accepting only secure, HTTPS connections for api.cloudflare.com.
#CyberSecurity
#CyberDefense
#InfoSec https://www.bleepingcomputer.com/news/security/cloudflare-now-blocks-all-unencrypted-traffic-to-its-api-endpoints/

Das Citizen Lab veröffentlichte kürzlich seine Untersuchung zu Paragon Solutions, einem Cyber-Defense-Unternehmen, das kürzlich mit einer Spyware-Kampagne gegen Journalisten auf WhatsApp in Verbindung gebracht wurde. Neben der kanadischen Provinzpolizei Ontario fanden Forscher heraus, dass auch Regierungen in Australien, Zypern, Dänemark, Israel und Singapur zu den potenziellen Kunden von Paragon gehören könnten...

https://techcrunch.com/2025/03/19/researchers-name-several-countries-as-potential-paragon-spyware-customers/

Think Like a Black Hat, Act Like a White Hat!

Let's Face-It ! -> To Outsmart cybercriminals, you must think like one—but use your skills for defense, not destruction. Learn the mindset of hackers and the strategies ethical hackers use to strengthen cybersecurity.

Read more: https://wardenshield.com/think-like-a-black-hat-and-act-like-a-white-hat

Insomni'hack 2025

We are happy to announce Cymulate as our Silver Sponsor.

Special thanks to the local team: Elizabeth Jeffreys, Martin Tran & Alex Kreutz!

Register here: https://insomnihack.ch/register/?utm_source=Mastodon&utm_medium=Social+Media&utm_campaign=Insomnihack+2025_Sponsor_Cymulate

Poland Launches Artificial Intelligence Center to Boost Military Power

https://defensemirror.com/news/38978/Poland_Launches_Artificial_Intelligence_Center_to_Boost_Military_Power

Poland Launches Artificial Intelligence Center to Boost Military Power

https://defensemirror.com/news/38978/Poland_Launches_Artificial_Intelligence_Center_to_Boost_Military_Power

#jeRecrute Pas moi mais le pitch dit « Rejoindre l’ANSSI, c'est contribuer à la sécurité de la Nation. C'est aussi incarner l’excellence française en matière de #cyberdéfense. » https://talents.ssi.gouv.fr/offresdemploi

Kunai pushes further integration with MISP!

This week, we've made significant progress in bridging Kunai with @misp to enhance threat intelligence sharing. Our focus has been on developing kunai-to-misp, a new tool available at https://github.com/kunai-project/pykunai, which processes Kunai logs and creates MISP events to streamline collaboration.

With this, it is now possible to both update MISP from Kunai and feed Kunai from MISP using the misp-to-kunai tool. Here's a practical workflow example:

Analyze a #linux malware sample with Kunai Sandbox (https://github.com/kunai-project/sandbox)
Use kunai-to-misp on the collected Kunai logs
(Optional) Review attributes' IDS flag to maximize detections and reduce false positives
Use misp-to-kunai to distribute the results across all Kunai endpoints

Additionally, we're leveraging MISP’s data model to craft meaningful MISP objects and relationships, offering a clear visual representation of events inside MISP.

Try it out and let us know what you think!

Kommentar zum #NIS2- und #Kritis-Debakel: Gehe zurück auf Los | iX Magazin https://www.heise.de/meinung/Kommentar-NIS2-und-Kritis-Dachgesetz-scheitern-weiterhin-10260515.html #KRITISDachgesetz #Cybersecurity #CriticalInfrastructure #EUDirective #GermanLaw #DataProtection #DigitalSecurity #InfrastructureProtection #CyberThreats #DataRetention #VDS #ClimateChange #HybridThreats #Legislation #ITSecurity #GermanPolitics #CyberDefense #Vorratsdatenspeicherung @bsi @bmi @HonkHase

Under #Trump, US #cyberdefense Loses Its Head. #Chinese #hacks, rampant #ransomware, and Donald Trump’s budget cuts all threaten US# security. In an exit interview with WIRED, former #CISA head Jen Easterly argues for her agency’s survival. https://www.wired.com/story/big-interview-jen-easterly-cisa-cybersecurity/ #cybercrime #cybersecurity #criminal #internet #politics #government #infosec #internet #communications #maga #politics

The NCSC warns the UK faces a ‘widening gap’ in tackling cyber threats, with ‘severe’ incidents handled by the agency tripling to 12 in the past year. #CyberSecurity #NCSC #UKCyberThreats #CyberAttacks #DataProtection #TechNews #CyberDefense #Infosec #CyberResilience