Security News > 2023 > October > Week in review: Chrome zero-day is actually in libwebp, Sony hacking rumours

Week in review: Chrome zero-day is actually in libwebp, Sony hacking rumours
2023-10-01 08:00

The pitfalls of neglecting security ownership at the design stageIn this Help Net Security interview, Nima Baiati, Executive Director and GM, Commercial Cybersecurity Solutions at Lenovo, discusses the disconnect between development and security teams and how companies need to prioritize security and why utilizing a multi-layered strategy is the best way to secure above and below the OS. The hidden costs of neglecting cybersecurity for small businessesIn this Help Net Security interview, Raffaele Mautone, CEO of Judy Security, talks about the cybersecurity problems that small businesses face and the need for prioritization to save businesses from potential fines and damage to their brand reputation.

Network Flight Simulator: Open-source adversary simulation toolNetwork Flight Simulator is a lightweight utility that generates malicious network traffic and helps security teams evaluate security controls and network visibility.

Hands-on threat simulations: Empower cybersecurity teams to confidently combat threatsSecurity processes are increasingly automated which has led some businesses to deprioritize developing their security teams' defense skills.

Cybersecurity skills employers are desperate to find in 2023In this Help Net Security video, Aaron Rosenmund, Director of Security Research and Curriculum, Pluralsight, discusses the most sought-after cybersecurity skills in today's competitive labor market.

Are developers giving enough thought to prompt injection threats when building code?While LLMs promise a future streamlined by artificial intelligence, their current developmental status-in what can best be described as "Beta" mode-creates a fertile ground for security exploits, particularly prompt injection attacks.

Still, competing interests create a growing challenge for cybersecurity decision makers and practitioners, according to CompTIA. Guide: SaaS Offboarding ChecklistDownload this template from Nudge Security for the essential steps of IT offboarding in the age of SaaS. New infosec products of the week: September 29, 2023Here's a look at the most interesting products from the past week, featuring releases from AlphaSOC, Baffle, Immersive Labs, OneTrust, Panzura, runZero, and SeeMetrics.


News URL

https://www.helpnetsecurity.com/2023/10/01/week-in-review-chrome-zero-day-is-actually-in-libwebp-sony-hacking-rumours/

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Sony 70 1 10 26 4 41