Friday, March 1, 2024

GitHub Rolls Out Default Secret Scanning Push Protection for Public Repositories

GitHub on Thursday announced that it’s enabling secret scanning push protection by default for all pushes to public repositories.
“This means that when a supported secret is detected in any push to a public repository, you will have the option to remove the secret from your commits or, if you deem the secret safe, bypass the block,” Eric Tooley and Courtney Claessens said.
Push protection&


http://dlvr.it/T3TMfZ

Thursday, February 29, 2024

Tenable Introduces Visibility Across IT, OT, and IoT Domains - Dark Reading

Tenable Introduces Visibility Across IT, OT, and IoT Domains  Dark Reading


http://dlvr.it/T3S1jZ

Grey Swans on the Horizon; AI, Cyber, Pandemics, and ET Scenarios - Forbes

Grey Swans on the Horizon; AI, Cyber, Pandemics, and ET Scenarios  Forbes


http://dlvr.it/T3Rntj

Healthcare sector cyber attacks are surging at an alarming rate, prompting frantic alerts by the FBI and CISA - ITPro

Healthcare sector cyber attacks are surging at an alarming rate, prompting frantic alerts by the FBI and CISA  ITPro


http://dlvr.it/T3RW7B

New Silver SAML Attack Evades Golden SAML Defenses in Identity Systems

Cybersecurity researchers have disclosed a new attack technique called Silver SAML that can be successful even in cases where mitigations have been applied against Golden SAML attacks.
Silver SAML “enables the exploitation of SAML to launch attacks from an identity provider like Entra ID against applications configured to use it for authentication, such as Salesforce,” Semperis


http://dlvr.it/T3R8jl

Chinese Hackers Exploiting Ivanti VPN Flaws to Deploy New Malware

At least two different suspected China-linked cyber espionage clusters, tracked as UNC5325 and UNC3886, have been attributed to the exploitation of security flaws in Ivanti Connect Secure VPN appliances.
UNC5325 abused CVE-2024-21893 to deliver a wide range of new malware called LITTLELAMB.WOOLTEA, PITSTOP, PITDOG, PITJET, and PITHOOK, as well as attempted to maintain


http://dlvr.it/T3Qkk0

GitHub Rolls Out Default Secret Scanning Push Protection for Public Repositories

GitHub on Thursday announced that it’s enabling secret scanning push protection by default for all pushes to public repositories. “This mea...