Lior Arzi

#DiyakoSecureBow ———————————— Gartner Israel Briefing: What you Need to Know about GenAI and Security September 202 Special Thanks❤️😇👍🏽🙏 Gartner -Secure Business Continuity- 2024.05.18 —————————————————— #CyberSecurity #benchmark #AI #Threats #SecureBusinessContinuity

16

🛎️ 📟 AU10TIX, a well-known Israeli-based authentication company serving major brands like Uber, TikTok, and LinkedIn, recently faced a security incident. An inadvertent exposure of administration credentials online for over a year potentially risked user identity documents, including drivers' licenses. The exposed credentials, detected by a researcher and disclosed to 404 Media, unveiled a logging platform with sensitive data such as names, dates of birth, nationalities, identification numbers, and document images. The incident, believed to stem from an infostealer on a Network Operations Center Manager's device at AU10TIX, fortunately did not result in actual data misuse, as confirmed by the company. However, this event underscores the critical importance of handling authentication data securely, especially for a company entrusted with verifying identities for high-profile clients. AU10TIX promptly terminated the compromised system and informed its customers about the situation. Stay informed: [Link to the full report here.](https://lnkd.in/egxtnGQB) #databreach #

1

⚠️ 𝟐𝟒-𝐡𝐨𝐮𝐫 𝐰𝐚𝐫𝐧𝐢𝐧𝐠 ⚠️ There’s still room to register for tomorrow’s special session✨ Tune in as Tamir Frenkel & George Tubin tackle the most prolific cyberattack vectors and advise #cybersecurity capabilities for small teams to detect inbound threats → https://lnkd.in/d2aTG9kk #informationsecurity #MSP #SMB #MSSP #riskmanagement #threatintelligence

24

One of our very first Dazz employees and resident ASPM guru Eyal Golombek is about to drop some solid DevSecOps insights on you! In this 20-minute Wednesday Wisdom cybersecurity showcase, we'll dive into: ⭐ Essential application security scanners ⭐ What to consider when implementing, and ⭐ How an ASPM solution helps you get the most out of them. Register here 👉 https://lnkd.in/dYD-Dp7k #ASPM #DevSecOps

32

Slash your cyber risk footprint with Trend Micro Israel! Featuring the most robust attack surface management capabilities encompassing cloud, hybrid, and on-prem environments, 🤟 🎯 Trend Vision One™ – Attack Surface Risk Management 🎯 🤟 combines continuous attack surface discovery, real-time risk assessments and prioritization, and automated mitigation actions to dramatically reduce your risk exposure. Watch video for more details 🎬 #trendmicro #visualdg #cybersecurity #riskmanagement Trend Micro Israel Ruth Aviel Maayan Ganot alon eilam Dor Hadad Topaz Abouhatsera

15

Attacks on Israeli orgs ‘more than doubled’ since October 7, cyber researcher says. Key takeaways: 1. Cyberattacks on Israeli organizations, particularly those tied to defense, have surged dramatically since October 7. With an average Israeli organization experiencing more than 2,200 attacks each week, this points to a shift in geopolitical and cyber warfare strategies. 2. The majority of these cyberattacks are politically motivated, with involvement suspected from Iranian state-sponsored groups and Hezbollah, marking an evolution in these groups' tactics and a significant threat to nations' security infrastructure. 3. The scope of these attacks extends beyond Israel, with countries including the U.S., Canada, and the U.K. also targeted. This highlights the global nature of cybersecurity threats and the need for collective international actions to counter these advanced persistent threats. Learn more by visiting The Record from Recorded Future News: https://lnkd.in/eKUYWJCq

3

Alexa Cybersecurity, a name in cybersecurity, is thrilled to announce its ongoing strategic partnership with Torq, a premier cybersecurity firm based in Israel. Together, they have developed and launched an advanced security solution leveraging hyper-automation to optimize incident response time and enhance efficiency for businesses. Drawing upon extensive experience in cybersecurity, Alexa Cybersecurity will serve as the sales representative and system integrator for Torq in the U.S. market. The synergy between Alexa Cybersecurity's expertise and Torq's hyper-automation technology promises to deliver unparalleled effectiveness and performance for organizations across the United States. The hyper-automation solution focuses on automating security processes, from rapid threat detection and response to streamlining deployment and management of security measures. This aids businesses in minimizing incident resolution time and bolstering protection for their information systems. We are excited about this collaboration and believe combining professionalism, experience, and hyper-automation technology will provide significant value to our customers. Partnering with Alexa Cybersecurity and Torq ensures businesses in the U.S. have a robust and reliable network security shield.

4

Exciting news from Cato at RSA 2024! 📣 Discover the latest in threat research as we unveil how attackers exploit complex security architectures. Our Chief Security Strategist, Etay Maor, and Cato’s Security Services Manager, Tal Darsan, along with the Cato CTRL team, will lead discussions detailing today's critical cybersecurity challenges. Mark your calendars: 📈 "The Price is WRONG - An Analysis of Security Complexity" on May 6, 2024, at 10:50 a.m. PT. 🛡️ "Flying Under the Radar - New Security Evasion Techniques" on May 7, 2024, at 8:30 a.m. PT. Join us to learn how simplifying your security setup can mitigate risks and reduce the costs associated with data breaches 👉 https://okt.to/gQ8W6C #Cybersecurity #SASE #SecurityStrategy

39

Upcoming Talk Alert! 🚀 14th of May at 19h00 (UCT+2) Join Mikhail Aksenov as he delves into common attack vectors like Postgres, Redis, SSH, and web vulnerabilities that could leave your servers at risk. Not just that, Mikhail will also show you how to detect these exploitations when immediate fixes aren't an option. Mikhail conducted a similar workshop for BSides Cape Town 2023 📎 👨‍💻 Ideal for entry-level blue team specialists looking to sharpen their defensive skills! #Cybersecurity #BlueTeam #EthicalHacking

9

🚨 Urgent Security Alert! 🚨 The Morphisec team, with special recognition to Arnold Osipov, Michael Gorelik, and Shmuel Uzan for their outstanding work, has discovered a critical vulnerability, CVE-2024-30103 in Microsoft Outlook. This zero-click remote code execution vulnerability poses a significant threat to organizations worldwide. We strongly urge all organizations to apply the patch released on June 11th to mitigate this risk. Join us at #DEFCON32 this year for our presentation, "Outlook Unleashing RCE Chaos: CVE-2024-30103" where we'll share technical details and a proof-of-concept (POC). Stay tuned for more insights, as we will be revealing additional RCE vulnerabilities once they are patched. Learn more about our team's discovery: https://bit.ly/45suUr9 #CyberSecurity #InfoSec #Morphisec #DEFCON #Outlook #RCE #VulnerabilityManagement

40

🎙️ Tune in to all you need to know about CVE-2024-37032, aka #Probllama 🎙️ Join Shir Tamari, Amitai Cohen, and Eden Naftali, as they dive into the latest discovery by Wiz's research team — a critical vulnerability in Ollama, a popular #AI application. In this episode, we explore: 🦙 The technical details of CVE-2024-37032 😈 How an attacker can abuse this vulnerability 🛡️ Steps AI users can take to defend themselves This isn't just about initial access or crypto mining. This flaw could allow attackers to gain remote code execution and alter prompt answers to generate misleading information. Listen to the full 'Crying Out Cloud' podcast episode below: https://lnkd.in/dwchRjEX

113

4 Comments

"We don't use the word 'customizable'—we prefer the word 'personalized.' It's hyper-personalized based on the user eligibility, what they're covered for, and what plan they're on." 🎙 Healthee CEO Guy Benjamin dives into the Healthee platform and company journey on the latest episode of Inside Israeli Innovation hosted by Maayan Hoffman! Learn how Guy's unique background led to Healthee's founding, and how our AI-powered platform is making employee health benefits more accessible and less costly. #healthtech #bentech #employeebenefits #aitechnology

20

Check out CYJAX's latest cyber intelligence weekly round-up! This week's video explores cyberattacks linked to the Israel-Palestine conflict, global DNS probing by a Chinese threat actor, and a major data leak involving the New York Times. For the written version - subscribe to our newsletter here: https://lnkd.in/dFgKdKPU #DataBreach #CyberSecurityNews #ThreatIntelligence

7