Tricia Reddy Lucas’ Post

Turn on MFA for all important accounts for better security 👍 #CybersecurityAwarenessMonth #CyberAwareness

Security Bulletin: Cleo File Transfer Products - CVE-2024-50623 Bypass is a critical vulnerability in Cleo's file transfer products—Harmony, VLTrader, and LexiCom—prior to version 5.8.0.24. The vulnerability has been actively exploited, with attackers establishing persistence, conducting reconnaissance, and executing arbitrary code on compromised systems. #ThreatIntel #CTI #RedLeggSecure https://hubs.ly/Q02_t1C80

Title: Detection of Ransomware attack using processor and disk usage data. "Excited to share the updates on my project! Check out the progress we've made and see how we're bringing our vision to life. #ProjectUpdate #Innovation #Progress"

In this 4-minute video, you'll learn the importance of safeguarding sensitive information and how Xerox's cutting-edge solutions can help with document security. Watch now: https://hubs.li/Q02TrrXt0. #Security #Xerox #Solutions #OfficePrinting

Security is fun only when you talk about it

So the oscar ceremony was.... interesting? To say the least. If you want a better one, meet OSC&R! what is it? The OSC&R framework provides a way to view the entire kill chain from left to right and understand how attackers will breach your applications and organization. It enables your security team to understand how an attacker looks at their application and exposure level per application. Not only it helps to focus on what matters for the business but also from an attacker's point of view. How do you handle your entire kill chain?

Why Zero Trust Should Matter to Physical Security Integrators

For those that feel they are Cyber Safe because they use MAC computers, here's a little resource that someone gave me that dives into that Myth: https://lnkd.in/dGtCF_bi The risk platform goes WAY beyond what OS you use! Need help with your business Cyber risk assessment, I'm happy to chat: https://lnkd.in/gsBzf9yG #cyberrisk

What are the top 10 security threats for LLMs? Aubrey King from F5 joins me to discuss OWASP's top 10 security issues for LLM-based applications. We discuss why each one is a problem, what attacks we're seeing, and what can be done about it. The good news is there's a lot of potential for new companies to be created that help address many complex unsolved problems with LLMs. The bad news is, there's a lot of complex unsolved problems to figure out :-). Here's the OWASP top 10: 10. Model theft 9. Overreliance 8. Excessive agency 7. Insecure plugin directory 6. Sensitive information disclosure 5. Supply chain vulnerability 4. Model denial of service 3. Training data poisoning 2. Insecure output handling 1. Prompt injections Check out the episode: https://lnkd.in/gXT2Xg_z #llms #llmsecurity #f5 #promptinjections #owasp

Security framework to determine whether defenders are winning