CyberInsights Weekly #19
Your weekly dose of learnings from cybersecurity news
I. Unsecured SAST tool as attack vector
A static code analysis tool running default configuration served as the entry point for attackers to steal source code.
An open source code analysis tool is a great way to improve security, as long as you configure it right!
CISO Check:
Do you secure all components of your CI/CD value chain?
Can your SIEM detect source code exfiltration from repositories?
II. “Micropatch” your obsolete MS apps
An interesting service offers to patch your out-of-support Microsoft applications.
It works by deploying ‘micro patches’ in the memory of a running system without requiring a reboot.
While we have not tested this, you can check out the website here.
CISO Check:
How do you secure end of support systems that cannot be replaced?
III. Quote of the week
If you believe you have a foolproof system, you've failed to take into consideration the creativity of fools - Frank Abagnale
Have an original interesting cybersecurity quote? Let us know in the comments and we will publish it along with your name in our quotes section.