The Year of the Typhoon
Introduction to Malware Binary Triage (IMBT) Course
Looking to level up your skills? Get 10% off using coupon code: MWNEWS10 for any flavor.
Enroll Now and Save 10%: Coupon Code MWNEWS10
Note: Affiliate link – your enrollment helps support this platform at no extra cost to you.
Highlights from this edition:
- The Year of the Typhoon: Critical infrastructure was in the path of the storm in the final weeks of 2024 as massive disclosures of telecommunications providers hit the news. From Salt Typhoon to Velvet Ant, we recap the major APTs that drove real change in cybersecurity in 2024
- Network Infrastructure in the Crosshairs:Network infrastructure and IoT devices were favorite targets for both APTs and ransomware gangs in 2024. VPNs. Firewalls. Routers. Switches. IoT Cameras. All of these make up a large, undermonitored attack surface that exists inside every major enterprise and government, and is a favored target for attackers who prioritize persistence.
- Firmware Threats: From Bootkitty, the first ever Linux bootkit, to the Illumina DNA sequencer vulnerabilities discovered by Eclypsium, firmware took the spotlight in 2024. We recap some of the major firmware threats, and what to watch out for in the coming year.
- AI, LLM and Automation Driving Change: In this edition we recap some of the major AI, LLM, and cybersecurity automation evolutions in 2024 as they are being used to catch vulnerabilities in code, detect active attackers, automatically investigate SOC alerts, and more.
- 2025 Trends to Watch: 2024 brought many challenges for defenders, but it also brought new advances in technology, in awareness, and may still bring new legislation to drive greater investment in cybersecurity where it is most direly needed: critical infrastructure.
The post Below the Surface Winter 2024 Edition – The Year in Review appeared first on Eclypsium | Supply Chain Security for the Modern Enterprise.
Article Link: Below the Surface Winter 2024 - Eclypsium | Supply Chain Security for the Modern Enterprise