With SASE Definition Still Cloudy, Forum Proposes Standard
Even without an overarching dictionary of common definitions, the concept of a secure access service edge (SASE) has spread, but a standard could help cloud services work better together.
Stay updated on the latest discussions and trends in information security across various forums with our comprehensive coverage.
Search across headline titles and summaries.
Background for this topic.
Forums are online discussion spaces where users post questions, answers, files, and messages organized by topic. In security, the term can describe legitimate professional communities, technical support boards, and underground marketplaces or criminal discussion sites. Their content may include vulnerability research, configuration advice, leaked credentials, stolen data, exploit code, or offers of illicit services.
Forums are relevant to security because posts and attachments can expose users to phishing, malware, malicious links, or accidental disclosure of sensitive information. Poor authentication, access control, moderation, or logging can also make a forum itself an attack surface. Defenders may monitor relevant public and restricted forums as a source of threat intelligence, while treating unverified claims and downloaded material as potentially hostile. Security teams should validate vulnerability reports, avoid interacting with criminal infrastructure unnecessarily, preserve material lawfully for investigation, and account for privacy and legal constraints when collecting forum data.
Even without an overarching dictionary of common definitions, the concept of a secure access service edge (SASE) has spread, but a standard could help cloud services work better together.
Social media analytics platform Social Blade has confirmed they suffered a data breach after its database was breached and put up for sale on a hacking forum. [...]
InfraGard, a program run by the U.S. Federal Bureau of Investigation (FBI) to build cyber and physical threat information sharing partnerships with the private sector, this week saw its database of contact information on more than 80,000 members go up for sale on an English-language cybercrime forum. Meanwhile, the hackers responsible are communicating directly with members through the InfraGard portal online -- using a new account under the assumed identity of a financial industry CEO that was vetted by the FBI itself.
Company information was stolen from third-party vendor Teqtivity and posted on a dark web forum
Threat actors leak employee email addresses, corporate reports, and IT asset information on a hacker forum after an attack on an Uber technology partner.
Sophos research unveiled at Black Hat Europe details a thriving subeconomy of fraud on the cybercrime underground, aimed at Dark Web forum users.