The CISO Times

2026 National Security Predictions

As borders become irrelevant through remotely-launched attacks, the geopolitical landscape is rapidly growing in complexity ...
cisotimes

Find Information About a Person on Instagram with OSINTgram

A Free Tool to Gather Publicly Available Information Through Social Media OSINT or “Open Source INTeligence” plays a critical role in the field of cybersecurity. It can be used by your company to ...
cisotimes

Insider Threat – From Detection to Prevention

From data leaks and cybersecurity incidents enabled by careless users to the malicious theft of intellectual property (IP) or even workplace violence, insider threats continue to pose a significant ...
cisotimes

The Internet of Medical Things and Cybersecurity Risk

The healthcare and life sciences industry continues to be plagued by cybersecurity threats. 1 According to FTI Consulting’s U.S. Healthcare & Life Sciences Industry Outlook 2023 survey, 70 percent of ...
cisotimes

The Future of Technology: Microsoft CEO Satya Nadella’s Vision of a World Without Software Applications

Microsoft CEO Satya Nadella recently made waves in the tech industry with groundbreaking predictions about the future of software. His bold statements have sparked conversations that could redefine ...
cisotimes

Penetration Testing: Create a DNS Zone Transfer Lab

Easy Lab Setup in Minutes and Multiple Tools to Choose From DNS zone transfers use the AXFR protocol to replicate DNS records across DNS servers. If you do not protect your name servers, attackers can ...
cisotimes

Discover Subdomains During A Penetration Testing Engagement

During an external penetration test, and especially if it is a black-box engagement, one of the most important steps is the discovery of subdomains used by the target company. Subdomain Enumeration is ...
cisotimes

Cloud Lateral Movement Via Exploited SQL Servers

Recent findings by Microsoft security researchers have unveiled a concerning cyberattack campaign that involves lateral movement to a cloud environment through a Microsoft SQL Server instance. While ...
cisotimes

Beware of DoS Attacks on Cisco Routers: Cisco Releases Critical Security Updates

Cisco has released critical security updates to address a high-severity DoS (Denial of Service) vulnerability that affects its IOS XR software. This vulnerability tracked as CVE-2023-20049, has a CVSS ...
cisotimes

Protecting Our Transport: ENISA’s Cyber Threat Landscape Report

ENISA, the European Union Agency for Cybersecurity, has released its first-ever Cyber Threat Landscape Report for the transport sector. The report covers incidents across aviation, maritime, railway, ...
cisotimes

Critical Vulnerability on Samsung Devices Could Enable Remote Exploitation

A significant vulnerability has been uncovered in Samsung smartphones, linked to the Monkey’s Audio (APE) decoder. The flaw, now resolved, was identified as CVE-2024-49415, carrying a CVSS score of ...
cisotimes

Google Cloud Gets Virtual Machine Threat Detection to Help Detect Crypto Mining

Google announced the public preview of a tool which helps identify threats within virtual machines running on its Google Cloud infrastructure. The new Virtual Machine Threat Detection (VMTD), now ...