~hackernoon | Bookmarks (41)

clear filters

cybersecurity ×

Insider Threats are Increasingly Using Privilege Escalation Exploits

hackernoon.com

A new report may indicate that insider threats are finding new innovative ways to attack core...
A new report may indicate that insider threats are finding new innovative ways to attack core systems while circumventing important controls.

cybersecurity data-breach hackernoon-es hackernoon-top-story insider-threats
1
Cross-Site Scripting (XSS) Vulnerabilities: Testing Strategies and Examples

hackernoon.com

XSS poses persistent threats to web apps, risking data breaches and user trust. Understanding XSS types...
XSS poses persistent threats to web apps, risking data breaches and user trust. Understanding XSS types and testing methods is crucial for effective mitigation. Prevention techniques such as input validation, output encoding, and CSP implementation improve app security. By prioritizing security practices and collaboration, teams can protect their apps against XSS and ensure adequate web app security.

cybersecurity software-qa software-testing web-app-security xss
1
Utilizing the Mechanics of Shamir's Secret Sharing Service — Part 2

hackernoon.com

I want to dive into SSS in a basic way and show the basic formulas for...
I want to dive into SSS in a basic way and show the basic formulas for working with polynomial mathematics using JavaScript as usual.

cybersecurity javascript nodejs shamir's-secret-sharing shamir-secret
1
Cybersecurity Tips: Vulnerability Scanners Essentials

hackernoon.com

Vulnerability scanners like OWASP ZAP, Burp Suite, Nessus, Sn1per, Metasploit, and SQLMap are crucial for identifying...
Vulnerability scanners like OWASP ZAP, Burp Suite, Nessus, Sn1per, Metasploit, and SQLMap are crucial for identifying and addressing security risks in software. They empower both cybersecurity experts and non-specialist teams to proactively improve defenses against cybersecurity threats. By mastering these tools, organizations and individuals can strengthen their cybersecurity posture, even in the absence of dedicated security personnel.

cyber-security-awareness cybersecurity information-security penetration-testing security-vulnerability
1
Perfecting the Recipe for Robust Cloud Applications: The Barista's Approach to Shift-Left Security

hackernoon.com

# The Art of Securing Cloud Applications: A Barista's Guide. Just as each coffee bean contributes...
# The Art of Securing Cloud Applications: A Barista's Guide. Just as each coffee bean contributes its unique flavor to the brew, every line of code in a cloud application holds the potential to either enhance or compromise its security. Like a barista ensuring the quality of their beans, developers need to guarantee their code is free from vulnerabilities.

cloud-security coffee cybersecurity devops devsecops
1
Cybersecurity Essentials: Practical Web App Security Testing Tips for QA Engineers

hackernoon.com

Practical insights and tips for enhancing web app security testing skills, focusing on vulnerabilities such as...
Practical insights and tips for enhancing web app security testing skills, focusing on vulnerabilities such as XSS, Header Injections, CSRF, RCE, Web Parameter Tampering, CORS, and Content Security Policy. It aims to bridge the gap between software QA and cybersecurity, empowering QA professionals to contribute to the early detection and mitigation of security flaws. The collaboration between cybersecurity and QA is highlighted as crucial...

csrf cybersecurity injection software-qa vulnerabilities
1
Protect Yourself From Identity Theft By Using Zero-Knowledge Proof, Solidity, and Ethereum

hackernoon.com

Identity theft can have devastating consequences for its victims, including damage to their credit, finances, and...
Identity theft can have devastating consequences for its victims, including damage to their credit, finances, and reputation. The insurance industry is particularly vulnerable to identity theft, as it deals with sensitive personal and financial information on a daily basis.

cybersecurity ethereum smart-contracts solidity zk-rollups
1
Digital Asset Protection and the Rise of Crypto Insurance

hackernoon.com

Read how crypto insurance boosts trust in blockchain, covering its types, challenges, and role in risk...
Read how crypto insurance boosts trust in blockchain, covering its types, challenges, and role in risk management.

crypto-insurance crypto-insurance-coverage crypto-insurance-guide cryptosphere-risk cybersecurity
1
The U.S. Is in Desperate Need of Power Grid Modernization

hackernoon.com

The U.S. power grid is ill-prepared for resilience, causing outages, public health crises, and economic disruptions....
The U.S. power grid is ill-prepared for resilience, causing outages, public health crises, and economic disruptions. However, modernization efforts are beginning, thanks to new energy tech, recent legislation, and increased awareness. As the grid modernizes, we should see fewer cyberattacks, a reinforced economy, stronger guards against disaster, and more reliable and clean energy.

cybersecurity energy power-grid renewable-energy smart-technology
1
Kerberoasting Attacks Surge: CrowdStrike's 2023 Warning

hackernoon.com

Kerberos is a ticket-based authentication system. Kerberoasting is a form of assault on networks secured by...
Kerberos is a ticket-based authentication system. Kerberoasting is a form of assault on networks secured by Kerberos. Attackers can steal service tickets, exposing the passwords of service accounts. CrowdStrike's 2023 Incident Response report sheds light on a disturbing trend: a ***583%*** increase in KerberOasting attacks.

cloud-security cyber-threats cybersecurity devops-security information-security
1
60 Stories To Learn About Personal Data Security

hackernoon.com

cybersecurity data-privacy data-security learn personal-data-security
1
Don't Make These Mistakes When Running a Phishing Simulation

hackernoon.com

Improperly run phishing simulations can make employees anxious and frustrated, and they may lose trust in...
Improperly run phishing simulations can make employees anxious and frustrated, and they may lose trust in the IT team. Common mistakes to avoid include making simulations too challenging, not varying distribution methods, conducting simulations simultaneously, not targeting higher-ups, publicly shaming those who fail, not providing immediate feedback, and using money as an incentive.

cybersecurity it phishing phishing-drill phishing-prevention
1
The Cybersecurity Battle Has Come to Hardware

hackernoon.com

Open source collaboration enhances hardware security by allowing global contributions and constant iteration. Mature open source...
Open source collaboration enhances hardware security by allowing global contributions and constant iteration. Mature open source projects, including those in hardware security, benefit from diverse perspectives and lead to rapid innovation. Instruction-set architectures (ISAs) exemplify this, providing open source-hardened foundations for secure software execution.

cybersecurity freebsd isa open-source open-source-hardware
1
2023 Demonstrated How Critical Robust Authorization Really is

hackernoon.com

2023 was a year that starkly revealed the consequences of inadequate cyber security. As businesses grow...
2023 was a year that starkly revealed the consequences of inadequate cyber security. As businesses grow and vulnerabilities increase, it's essential to develop authorization systems that are both flexible and scalable. Traditional methods often embed authorization logic within an application's code, creating inconsistencies and challenges in monitoring and adjusting permissions.

approach-to-authorization authorization cybersecurity data-breaches-in-2023 decoupled-microservices
1
Enterprise Resource Planning & Critical Infrastructure

hackernoon.com

The issues IT and Cybersecurity teams face in maintaining and protecting ERP systems, including a lack...
The issues IT and Cybersecurity teams face in maintaining and protecting ERP systems, including a lack of transparency with business units.

cloud-computing critical-infrastructure cybersecurity erp nerc-cip
1
Children Should Begin Learning Cybersecurity the Moment They Switch On Their First Tablet

hackernoon.com

This article discusses the importance of introducing cybersecurity education to children at an early age, starting...
This article discusses the importance of introducing cybersecurity education to children at an early age, starting as soon as they begin using their first tablet. It provides age-specific strategies and resources for teaching cybersecurity concepts, ranging from basic online safety for toddlers to more advanced topics for teenagers, aiming to foster a generation of cyber-aware and responsible digital users.

basic-cyber-hygiene cybersecurity cybersecurity-education cybersecurity-for-kids kids-and-tech
1