Archive for the ‘Security Architecture’ Category

APIC/EPIC! Intel chips leak secrets even the kernel shouldn’t see

Filed in Cryptograghy, Data Breach, Security Architecture, Security Breach, Security vulnerabilities on Aug.10, 2022

Here’s this week’s BWAIN, our jocular term for a Bug With An Impressive Name. BWAIN is an accolade that we hand out when a new cybersecurity flaw not only turns out to be interesting and important, but also turns up with its own logo, domain name and website. This one is dubbed Ă†PIC Leak, a pun on […]

Tags: Cryptography, Data loss

Leave a Comment

50% of internet-facing GitLab installations are still affected by a RCE flaw

Filed in Information Security, Security Architecture, Security playbook, Security vulnerabilities on Nov.02, 2021

Cybersecurity researchers warn of a now-patched critical remote code execution (RCE) vulnerability, tracked as CVE-2021-22205, in GitLab’s web interface that has been actively exploited in the wild. The vulnerability is an improper validation issue of user-provided images the can lead to arbitrary code execution. The vulnerability affects all versions starting from 11.9. “An issue has been […]

Tags: Gitlab, Gitlab vulnerability

Leave a Comment

The evolution of cybersecurity within network architecture

Filed in Security Architecture on Jun.07, 2021

A decade ago, security officers would have been able to identify the repercussions of an attack almost immediately, as most took place in the top-level layers of a system, typically through a malware attack. Now however, threat actors work over greater lengths of time, with much broader, long-term horizons in mind. Leaders can no longer […]

Tags: cybersecurity within network architecture, Network security architecture

Leave a Comment

  • subscribe

  • Advertising

  • Click below to Follow DISC InfoSec blog

      👇           👇           👇

    Follow DISC InfoSec blog

    DISC InfoSec Titles

  • DISC InfoSec Services


    👉 Download a Virtual CISO (#vCISO) and Security Advisory Fact Sheet & Cybersecurity Cheat Sheet

  • Get a Cyber Aware Cheat Sheet now!

  • “Like” our FB DISC InfoSec page

    >>> DISC InfoSec Facebook Page <<<

  • DISC InfoSec Store

    DISC online store for recommended InfoSec products

  • DISC InfoSec Online Services

    DISC InoSec Services
  • Download ISO27k Standards

    vCISO as a service



  • Search DISC InfoSec blog

  • Meta

  • Blogroll

  • Archives

  • Categories

  • Tags

    Business Chief Information Security Officer china CISA CISO Cloud computing cloud security Computer security Credit card cyberwarfare dark web data breach data security facebook Google Hacking Health Insurance Portability and Accountability Act Identity Theft Information Security Information Security Management System International Organization for Standardization isms ISO/IEC 27001 iso 27001 ISO 27001 2013 ISO 27001 2013 Gap Assessment iso 27001 certification iso 27002 Log4j Log4shell Malware Microsoft Payment Card Industry Data Security Standard pci dss Pegasus spyware phishing privacy Ransomware Protection Playbook Risk Assessment Risk management Security Security Risk Assessment Spyware United States vCISO

  • For an InfoSec and Compliance question

    Contact us

    Support us
  • Best Sellers Books in Computer Security

    New Releases in Computer Security