https://github.com/wiz-sec/cloud-middleware-dataset

This project contains cloud middleware (i.e. agents installed by cloud security providers) used across the major cloud service providers (Azure, AWS and GCP).

The cloud middleware dataset lists all agents installed by the major cloud service providers (Azure, AWS, and GCP). The purpose of this project is to provide cloud customers fully visibility into the middleware that is installed in their environments, which could potentially increase the attack surface.

Всем доброго времени.

Не знаю, была ли здесь эта новость, но выглядит "многообещающе":

https://opennet.ru/57328/

Инфобез на массовом: где хранить пароли, чтобы их не украли

Мы запустили спецпроект в ходе которого ИБ-эксперты и сотрудники кибербез-компаний рассказывают о базовых правилах информационной безопасности для простых пользователей.

1 видео — 1 лайфхак.

Вторая важная рекомендация по личной безопасности от всеми любимого Алексея Лукацкого.

Наши герои бесплатно делятся знаниями из благих намерений.

@NeKaspersky

В канале GDS идут нарезки сказанного про ИБ на ПМЭФ

https://github.com/Yamato-Security

Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.

Если вдруг вам все еще интересно, что происходило на мероприятии (RSAC), которое задает тон всей индустрии и определяет тренды на год вперед.

Спойлер: я на конфе не был и просто оцениваю по внешним признакам и обзору Интернет-источников 😊

https://www.nist.gov/agenda/building-nist-foundations-next-steps-iot-cybersecurity

The National Institute of Standards and Technology (NIST) Cybersecurity for the Internet of Things (IoT) program has released two new documents:

A Discussion Essay noscriptd Ideas for the Future of IoT Cybersecurity at NIST: IoT Risk Identification Complexity. This discussion paper presents some grounding for risk identification in IoT, based on NIST’s prior work in cybersecurity for IoT (e.g., NISTIR 8259), and plots the path for forward-looking discussions on how to identify and address risks for IoT devices.
A Profile of the IoT Core Baseline for Consumer IoT Products (NIST IR 8425), which takes the consumer IoT cybersecurity criteria from our February 2022 white paper on Recommended Criteria for Cybersecurity Labeling for Consumer Internet of Things (IoT) Products and incorporates into the family of NIST’s IoT cybersecurity guidance.
These new documents will be central to the discussions at our upcoming virtual workshop on considerations around cybersecurity for IoT products, including consumer products. This event takes place on June 22, 2022, from 10:00am-4:00 p.m. Eastern Daylight Time. The workshop Building on the NIST Foundations: Next Steps in IoT Cybersecurity | NIST website has the full agenda and registration.