Tag: radius

Minimize the Vulnerability Blast Radius in the Cloud

Oct 30, 2025 9:19 PM

Tags: access, attack, breach, cloud, container, control, data, exploit, identity, network, radius, risk, software, threat, tool, vulnerability, vulnerability-management

Tenable Cloud Security unifies visibility across code, build, and runtime stages. It correlates vulnerabilities, identities, and misconfigurations to prioritize exploitability and automate containment, helping teams detect, control, and remediate risks across multi-cloud and hybrid environments. Key takeaways: Vulnerabilities can emerge at any point in multi-cloud and hybrid cloud environments, and the potential blast radius of…
Minimize the Vulnerability Blast Radius in the Cloud

Oct 30, 2025 9:19 PM

Tags: access, attack, breach, cloud, container, control, data, exploit, identity, network, radius, risk, software, threat, tool, vulnerability, vulnerability-management

Tenable Cloud Security unifies visibility across code, build, and runtime stages. It correlates vulnerabilities, identities, and misconfigurations to prioritize exploitability and automate containment, helping teams detect, control, and remediate risks across multi-cloud and hybrid environments. Key takeaways: Vulnerabilities can emerge at any point in multi-cloud and hybrid cloud environments, and the potential blast radius of…
Data sovereignty proof: How to verify controls like ‘Project Texas’

Oct 27, 2025 12:26 PM

Tags: access, ai, api, backdoor, breach, business, ceo, cloud, computing, control, country, cyber, cybersecurity, data, encryption, Hardware, iam, identity, infrastructure, jobs, metric, network, radius, RedTeam, risk, service, soc, strategy, supply-chain, threat, worm, zero-trust

“Verification regimes work best when they serve everyone’s interests. The reporting company wants a process that does not impose too many burdens or interrupt workflow while allowing it to demonstrate compliance. Oversight bodies want hard data that is difficult to fake and indicates adherence to the regime. Finally, these systems need to be simple enough…
Data sovereignty proof: How to verify controls like ‘Project Texas’

Oct 27, 2025 12:26 PM

Tags: access, ai, api, backdoor, breach, business, ceo, cloud, computing, control, country, cyber, cybersecurity, data, encryption, Hardware, iam, identity, infrastructure, jobs, metric, network, radius, RedTeam, risk, service, soc, strategy, supply-chain, threat, worm, zero-trust

“Verification regimes work best when they serve everyone’s interests. The reporting company wants a process that does not impose too many burdens or interrupt workflow while allowing it to demonstrate compliance. Oversight bodies want hard data that is difficult to fake and indicates adherence to the regime. Finally, these systems need to be simple enough…
Serious vulnerability found in Rust library

Oct 23, 2025 5:26 AM

Tags: advisory, attack, backup, container, control, data, email, exploit, flaw, incident response, infection, infosec, linux, malicious, open-source, pypi, radius, remote-code-execution, rust, software, supply-chain, unauthorized, update, vulnerability

async-tar Rust library. And not only is it in this library, but also in its many forks, including the widely used tokio-tar.”In the worst-case scenario, this vulnerability has a severity of 8.1 (High) and can lead to Remote Code Execution (RCE) through file overwriting attacks, such as replacing configuration files or hijacking build backends,” the researchers say…
F5 Security Incident Advisory

Oct 17, 2025 9:09 AM

Tags: access, advisory, application-security, attack, authentication, awareness, backdoor, best-practice, breach, china, cisa, compliance, control, corporate, cve, cvss, cybersecurity, data, data-breach, defense, detection, dos, endpoint, espionage, exploit, finance, flaw, government, group, guide, hacker, Hardware, identity, infrastructure, Internet, Intruder, malicious, malware, mitigation, monitoring, network, phishing, PurpleTeam, radius, rce, remote-code-execution, risk, risk-assessment, security-incident, service, software, strategy, technology, theft, threat, training, unauthorized, update, vulnerability, zero-day, zero-trust

Executive SummaryOn October 15, 2025, F5 Networks publicly disclosed a serious security breach involving a nation-state threat actor. The intruders maintained long-term, persistent access to F5’s internal systems”, specifically the BIG-IP product development environment and engineering knowledge management platforms. F5 first detected unauthorized activity on August 9, 2025, but delayed public disclosure until mid-October as directed by…
Introducing MAESTRO: A framework for securing generative and agentic AI

Oct 15, 2025 2:54 PM

Tags: ai, api, attack, banking, business, cloud, compliance, container, control, data, detection, endpoint, fintech, framework, fraud, GDPR, governance, identity, infrastructure, injection, kubernetes, LLM, malicious, mitre, monitoring, network, nist, PCI, radius, risk, saas, service, supply-chain, threat, tool, unauthorized

System boundary: MAESTRO reviews focus on models, AI agents, data flows, CI/CD pipelines, supporting tools and third-party APIs. Broader IT security hygiene (patching, identity governance, endpoint protection) is assumed to be managed by existing programs.Assumptions: organizations have the security baseline configurations and compliance, such as ISO 27XXX, in place. MAESTRO builds on these baselines and…
FBI seizes BreachForums servers as threatened Salesforce data release deadline approaches

Oct 10, 2025 9:24 PM

Tags: attack, dark-web, data, detection, extortion, governance, infrastructure, intelligence, leak, least-privilege, radius, ransomware, risk, saas, service

Targeting SaaS: Rik Ferguson, VP security intelligence at Forescout, agreed that any disruption was likely to be a temporary setback.”It burns infrastructure, yields intelligence, and sows distrust among criminals. But the gang’s dark-web leak site is still up, and they explicitly say the campaign continues,” he told CSO Online by email.”That tells you everything about…
ClayRat spyware turns phones into distribution hubs via SMS and Telegram

Oct 9, 2025 4:23 PM

Tags: android, cybersecurity, defense, detection, endpoint, google, Hardware, intelligence, mfa, ml, mobile, passkey, phishing, phone, radius, spyware, threat, training

Fighting a self-spreading spyware: Experts say combating ClayRat requires both technical hardening and behavioral hygiene.”Security teams should enforce a layered mobile security posture that reduces installation paths, detects compromise, and limits blast radius,” said Jason Soroko, Senior Fellow at Sectigo. He recommends blocking sideloading through Android Enterprise policy, deploying mobile threat defense integrated with endpoint…
How to restructure your security program to modernize defense

Sep 30, 2025 10:10 AM

Tags: ai, business, ceo, ciso, cloud, control, corporate, defense, framework, infrastructure, jobs, radius, risk, skills, startup, technology, threat, tool, training, vulnerability

Restructuring the security program when technology and skills change: When revamping the security programs, CISOs can have in mind Venables’ four-phase framework, which is flexible enough to fit almost any organization. Companies can start where they are, make the changes they want, and then return to complete the remaining tasks.Restructuring the security program should be…
Cisco Firewall and VPN Zero Day Attacks: CVE-2025-20333 and CVE-2025-20362

Sep 27, 2025 4:08 PM

Tags: access, advisory, ai, attack, authentication, awareness, backdoor, best-practice, breach, china, cisa, cisco, cloud, compliance, control, cve, cyber, cybersecurity, data, data-breach, defense, encryption, endpoint, espionage, exploit, firewall, firmware, flaw, group, Hardware, identity, infrastructure, Internet, Intruder, login, malicious, malware, mfa, mitigation, monitoring, network, password, phishing, PurpleTeam, radius, risk, risk-assessment, service, software, technology, theft, threat, training, unauthorized, update, vpn, vulnerability, zero-day, zero-trust

IntroductionOn September 25, 2025, Cisco released a security advisory to patch three security flaws impacting the VPN web server of Cisco Secure Firewall Adaptive Security Appliance (ASA) and Cisco Secure Firewall Threat Defense (FTD) software, which have been exploited in the wild. These three vulnerabilities are tracked as CVE-2025-20333, CVE-2025-20362, and CVE-2025-20363. The sophisticated state-sponsored campaign has been…
AI coding assistants amplify deeper cybersecurity risks

Sep 25, 2025 9:49 AM

Tags: access, ai, api, application-security, attack, authentication, business, ceo, ciso, cloud, compliance, control, cybersecurity, data, data-breach, detection, fintech, flaw, governance, injection, leak, LLM, metric, open-source, programming, radius, risk, risk-management, service, software, startup, strategy, threat, tool, training, vulnerability

‘Shadow’ engineers and vibe coding compound risks: Ashwin Mithra, global head of information security at continuous software development firm Cloudbees, notes that part of the problem is that non-technical teams are using AI to build apps, scripts, and dashboards.”These shadow engineers don’t realize they’re part of the software development life cycle, and often bypass critical…
Secret Service Shuts Down Sprawling Hidden Telecom Network in NY

Sep 23, 2025 4:15 PM

Tags: communications, network, radius, service

The Secret Service has dismantled a sprawling hidden telecom network within a 35-miles radius in New York that could have shut down communications in New York City just as more than 150 world leaders were coming into the city for the U.N. General Assembly. The network also could have been used to send and receive…
From prevention to rapid response: The new era of CISO strategy

Sep 16, 2025 3:16 PM

Tags: access, attack, authentication, automation, awareness, breach, ciso, control, credentials, cybersecurity, data, finance, fintech, infrastructure, Intruder, malicious, monitoring, network, privacy, radius, resilience, service, strategy, threat, zero-trust

Breaches will happen, so how do we deal with the fallout?CISOs are now spending less energy trying to keep every threat at bay. They know attackers will get in, but the question is, what’s next? The new mindset is about stopping intruders from moving around and escalating the damage.This shift means investing in sharper visibility,…
6 hot cybersecurity trends

Sep 10, 2025 5:16 PM

Tags: access, ai, attack, automation, awareness, breach, ceo, chatgpt, cisco, ciso, cloud, compliance, credentials, crowdstrike, cyber, cybersecurity, data, data-breach, deep-fake, edr, email, endpoint, finance, firewall, google, group, hacker, ibm, identity, incident response, infrastructure, intelligence, jobs, law, LLM, malicious, mfa, monitoring, network, open-source, password, phishing, phone, radius, RedTeam, risk, risk-assessment, sans, skills, sophos, strategy, supply-chain, theft, threat, tool, training, unauthorized, update, vulnerability, zero-trust

2. Protecting AI from attacks: AI can help CISOs protect their IT infrastructure, but who’s protecting the AI?”While 2024 saw a surge in proof-of-concept (POC) projects for gen AI, many organizations are moving these projects into production without conducting comprehensive risk assessments,” IDC concludes in its 2025 Security and Trust FutureScape.”Companies may face significant vulnerabilities…
6 hot cybersecurity trends

Sep 10, 2025 5:16 PM

Tags: access, ai, attack, automation, awareness, breach, ceo, chatgpt, cisco, ciso, cloud, compliance, credentials, crowdstrike, cyber, cybersecurity, data, data-breach, deep-fake, edr, email, endpoint, finance, firewall, google, group, hacker, ibm, identity, incident response, infrastructure, intelligence, jobs, law, LLM, malicious, mfa, monitoring, network, open-source, password, phishing, phone, radius, RedTeam, risk, risk-assessment, sans, skills, sophos, strategy, supply-chain, theft, threat, tool, training, unauthorized, update, vulnerability, zero-trust

2. Protecting AI from attacks: AI can help CISOs protect their IT infrastructure, but who’s protecting the AI?”While 2024 saw a surge in proof-of-concept (POC) projects for gen AI, many organizations are moving these projects into production without conducting comprehensive risk assessments,” IDC concludes in its 2025 Security and Trust FutureScape.”Companies may face significant vulnerabilities…
You should be aware of these latest social engineering trends

Sep 5, 2025 4:20 PM

Tags: access, attack, authentication, awareness, breach, control, cyber, cybercrime, cybersecurity, data, email, exploit, group, hacker, login, mfa, microsoft, network, phone, radius, risk, service, social-engineering, strategy, tool, vulnerability, windows

It’s raining (phishing) emails: Unlike other attacks in the cybersecurity landscape, social engineering does not focus on exploiting vulnerabilities in code or network architecture. Instead, it exploits human behavior, which is often the weakest link in the security chain. And stress on an already busy day is an extremely effective trigger.The following examples show how…
You should be aware of these latest social engineering trends

Sep 5, 2025 4:20 PM

Tags: access, attack, authentication, awareness, breach, control, cyber, cybercrime, cybersecurity, data, email, exploit, group, hacker, login, mfa, microsoft, network, phone, radius, risk, service, social-engineering, strategy, tool, vulnerability, windows

It’s raining (phishing) emails: Unlike other attacks in the cybersecurity landscape, social engineering does not focus on exploiting vulnerabilities in code or network architecture. Instead, it exploits human behavior, which is often the weakest link in the security chain. And stress on an already busy day is an extremely effective trigger.The following examples show how…
Blast Radius of Salesloft Drift Attacks Remains Uncertain

Sep 4, 2025 7:21 PM

Tags: attack, breach, data, radius, supply-chain

Many high-profile Salesloft Drift customers have disclosed data breaches as a result of a recent supply-chain attack, but the extent and severity of this campaign are unclear. First seen on darkreading.com Jump to article: www.darkreading.com/cyberattacks-data-breaches/salesloft-drift-attacks-blast-radius-uncertain
Salt Typhoon APT techniques revealed in new report

Aug 29, 2025 5:23 AM

Tags: access, apt, authentication, best-practice, cisco, container, control, credentials, cybersecurity, data, incident response, infrastructure, law, malicious, mitigation, monitoring, network, password, radius, regulation, router, service, software, threat, unauthorized, update, vulnerability

Salt Typhoon lateral movement and data collection: In order to move deeper inside networks, the attackers over leverage existing authentication protocols such as Terminal Access Controller Access Control System Plus (TACACS+) and Remote Authentication Dial-In User Service (RADIUS). The Managed Information Base (MIB), various router interfaces, Resource Reservation Protocol (RSVP) sessions, Border Gateway Protocol (BGP)…
Hundreds of Salesforce customer orgs hit in clever attack with potentially huge blast radius

Aug 27, 2025 5:23 PM

Tags: attack, corporate, credentials, data, google, group, radius, threat

A threat group Google tracks as UNC6395 has pilfered troves of data from Salesforce corporate instances, in search of credentials that can be used to compromise those … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/08/27/hundreds-of-salesforce-customer-orgs-hit-in-clever-attack-with-potentially-huge-blast-radius/
TDL003 – Breaking Barriers: IPv6 Adoption and DNS Transformation with Tommy Jensen

Aug 27, 2025 5:23 AM

Tags: access, ai, apple, attack, backup, banking, browser, business, ceo, chrome, ciso, compliance, computer, computing, control, country, credentials, cybersecurity, data, data-breach, ddos, dns, encryption, endpoint, google, government, group, international, Internet, jobs, law, microsoft, mobile, network, phishing, phone, privacy, programming, radius, risk, service, smishing, strategy, switch, technology, threat, update, vpn, windows, zero-trust

Summary This episode of the Defender’s Log features special guest Tommy Jensen, an internet technologist specializing in IPv6, Zero Trust, and standards. Jensen’s career path, from an AppleCare contractor to a key figure in advancing internet technologies, is explored. The discussion highlights the critical importance and challenges of migrating to IPv6 and the necessity of…
The Imperative of Tunnel-Free Trusted Cloud Edge Architectures

Aug 21, 2025 10:54 PM

Tags: access, ai, attack, authentication, backup, business, china, cloud, communications, compliance, computing, control, corporate, cyber, cybersecurity, data, data-breach, defense, encryption, endpoint, espionage, finance, framework, GDPR, healthcare, HIPAA, identity, infrastructure, Internet, iot, malicious, military, mobile, network, office, PCI, privacy, radius, regulation, resilience, risk, service, software, strategy, technology, threat, tool, unauthorized, vpn, zero-trust
Cisco Patches Maximum-Severity Firewall Flaw

Aug 18, 2025 11:54 PM

Tags: cisco, cvss, firewall, flaw, hacker, radius, update, vulnerability

Cisco Secure Firewall Management Centers Connected to RADIUS Left Vulnerable. Networking equipment giant Cisco warned firewall customers to patch after discovering a maximum-severity vulnerability that could allow unauthenticated hackers to commandeer the server. The flaw rates a maximum score of 10 on the CVSS system. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/cisco-patches-maximum-severity-firewall-flaw-a-29250
We’re a Major Player in the 2025 IDC MarketScape for CNAPP. Here’s Why That Matters for Your Cloud Security.

Aug 7, 2025 7:11 PM

Tags: access, attack, automation, business, ciso, cloud, compliance, control, cyber, cybersecurity, data, data-breach, detection, governance, iam, identity, incident response, infrastructure, metric, radius, risk, strategy, threat, tool, vulnerability, vulnerability-management

“With a strong focus on CNAPP through Tenable Cloud Security and exposure management with Tenable One, Tenable provides visibility and control over hybrid attack surfaces, including on-premises, cloud, and hybrid environments,” according to the report. To successfully tackle your cloud security challenges, you need a partner that understands the landscape and offers you a powerful,…
Containment as a Core Security Strategy

Jul 21, 2025 4:40 PM

Tags: radius, strategy, threat, vulnerability

We cannot keep reacting to vulnerabilities as they emerge. We must assume the presence of unknown threats and reduce the blast radius that they can affect. First seen on darkreading.com Jump to article: www.darkreading.com/vulnerabilities-threats/containment-core-security-strategy
Cisco warns of another critical RCE flaw in ISE, urges immediate patching

Jul 18, 2025 3:40 PM

Tags: access, ai, api, breach, cisco, communications, credentials, endpoint, exploit, flaw, network, radius, rce, remote-code-execution, risk, update, vulnerability, wifi

Faster patching is needed: Barr is concerned about the flaw in finding N-day abuse. “While it’s positive that Cisco is transparent in disclosure and swift in releasing patches, the reality is that patching these types of vulnerabilities, especially in large, distributed enterprise environments, is not instantaneous,” he said. “Restart requirements and dependencies on high-availability setups…
Building scalable secrets management in hybrid cloud environments: Lessons from enterprise adoption

Jul 18, 2025 2:40 PM

Tags: access, backup, cloud, credentials, data, gitlab, group, iam, identity, infrastructure, jobs, kubernetes, leak, radius, service, supply-chain, tool

Lessons from integration: Identity, Kubernetes and CI/CD : Choosing a secrets management tool is the easy part. Integrating it across an enterprise is where the work begins. We started with identity. Manual user provisioning was not an option. We integrated Vault with our SSO platform using OIDC and mapped groups to Vault policies based on least privilege.…
One click to compromise: Oracle Cloud Code Editor flaw exposed users to RCE

Jul 16, 2025 3:40 PM

Tags: access, attack, cloud, credentials, data, data-breach, detection, exploit, flaw, identity, linux, oracle, radius, rce, remote-code-execution, tool

Attacks could have a wider blast radius: Because Code Editor operates on the same underlying file system as the Cloud Shell, essentially a Linux home directory in the cloud, attackers could tamper with files used by other integrated services. This turns the flaw in the seemingly contained developer tool into an exposure for lateral movement…
Trend Micro flags BERT: A rapidly growing ransomware threat

Jul 9, 2025 6:39 PM

Tags: ceo, cybersecurity, data, edr, email, group, healthcare, malware, phishing, phone, radius, ransom, ransomware, tactics, threat, tool

Low-code, high impact: BERT is not an isolated development, it is part of a growing wave of emerging ransomware groups that are proving both capable and elusive. In just the last three to four months, cybersecurity researchers have identified multiple new ransomware families that signal a shift toward leaner, low-code, and faster malware operations.For instance,…