Home - Blue Lava Community

Message Image

Skip main navigation (Press Enter).

Information security is a team effort.
Count us in.

Your safe haven environment to gather, share, support and mentor

Grow your skills and career as a member of the Blue Lava Community - Built with, by and for security leaders.

Our Community Members

Alex
Kreilein

Qualys

Tammy
Moskites

CyAlliance

Mark
Weatherford

AlertEnterprise

Rock Lambros

RockCyber

Roger Hale

Agora

Russell Eubanks

Security Ever After

Jasper Ossentjuk

NielsenIQ

William Pugh

AWS

Frank Kim

SANS

Megan McCann

McCann Partners

Brian Johnson

Armorblox

Brian Contos

Sevco

Laz

Blue Lava

Deborah Blyth

Crowdstrike

Elizabeth Volini

JLL

Hamish Archer

IBM

Julie Cullivan

FireEye

Eward Driehuis

3Eyes Security

Member Exclusive Resources

Built with, by, and for the Community

Community Project - 30/60/90 Plan For Success

Take full advantage of the detailed information in this guide built with, by and for members of the Blue Lava Community. You will appreciate the guidance, language and experiences shared from our project champions.

Community Project - CISO Board Presentation Template

This customizable slide deck was built with, by and for members of the Blue Lava Community who are looking to enhance their board presentations. Guided by a team of 6 experienced CISOs as well as dozens of other community champions.

On-Demand Recording: Navigating Application Security Excellence in a Rapidly Evolving Security Landscape

In the ever-evolving world of cybersecurity, Application Security (AppSec) has emerged as a pivotal industry, growing exponentially and becoming a crucial aspect of modern business operations. We invite you to our exclusive one-hour Blue Lava Community meetup, “Navigating Application Security Excellence in a Rapidly Evolving Security Landscape,” where we will explore the complexities of managing AppSec...

Membership Benefits

Private collaboration portal allowing members to gather, share, support, and mentor 365-days a year

01

Career services including executive placement support

02

Expert guidance on security program management

03

Relevant content and resources created with, by, and for members

04

Private meetups and best practice working groups led by member facilitators

05

Strategic mentor matchmaking

06

Join the community

Criteria to Join

The Blue Lava Community is built with, by and for CISOs and also welcomes those who aspire to lead security teams in the future.

There is no sales, marketing or business development representation in the community.

CISOs (or equivalent responsibility)

01

Cybersecurity stakeholders including CIO, CRO, CTO, CPO

02

High potential cybersecurity leaders and aspiring CISOs

03

vCISOs, Consulting CISO, Business owners, Security Experts and Industry Influencers

04

Blue Lava customers

05

No sales, marketing, or business development executives are eligible

06

Join the community

Latest Discussions

RE: Task Force Gives Terrible Advice About Ransomware
Guardians of Academia: Battling Cyber Threats in Higher Education
RE: RSAC 24 Check-in - Who's going to be there?
April 15th CISO Dinner with Team 8 in San Francisco

1 person recommends this.
Mastering Vulnerability Management

2 people recommend this.
Researchers Give Birth to the First GenAI Worm

1 person recommends this.

More

Leaderboard

Events

Thursday

25

April

CISO XC Dallas - Sponsored by Zyston

Apr 25, 08:00 AM - 05:00 PM (CT)

Plano, TX, United States
Thursday

13

June

DataConnectors Boston Conference - Featuring Laz and sponsored by Zyston

Jun 13, 08:00 AM - 06:00 PM (ET)

More

Blogs

The Rise of AI as a Service: Revolutionizing Cybersecurity and Governance in the Digital Age

By: Royce Markose, 02-13-2024 01:52 PM

Blog Entry

Introduction: As Artificial Intelligence as a Service (AIaaS) forges new pathways in the technological landscape, its application in cybersecurity and regulatory compliance is becoming increasingly ...
From Nervous to Engaging: Mastering the Art of Cybersecurity and Technical Presentations

By: Mel Reyes, 01-16-2024 11:09 AM

Blog Entry

Are you an aspiring leader in the cybersecurity and technical field? Do you struggle with presenting your ideas or expertise to your peers or potential clients? If so, you're not alone. Many technical ...
AI Security 2024: Take a Deep Breath

By: Sandy Dunn, 01-10-2024 09:27 AM

Blog Entry

Similar to a high-stakes chess game where each move is crucial, your 2024 decisions moves must be meticulously planned. Artificial Intelligence threats and impacts are not well known or understood, but ...

News

How Attackers Can Own a Business Without Touching the Endpoint

4/19/2024 7:08:00 AM

Attackers are increasingly making use of “networkless” attack techniques targeting cloud apps and identities. Here’s how attackers can (and are) compromising organizations – without ever needing to touch...
Akira Ransomware Gang Extorts $42 Million; Now Targets Linux Servers

4/19/2024 7:01:00 AM

Threat actors behind the Akira ransomware group have extorted approximately $42 million in illicit proceeds after breaching the networks of more than 250 victims as of January 1, 2024. "Since March 2023...
Hackers Target Middle East Governments with Evasive "CR4T" Backdoor

4/19/2024 2:16:00 AM

Government entities in the Middle East have been targeted as part of a previously undocumented campaign to deliver a new backdoor dubbed CR4T. Russian cybersecurity company Kaspersky said it discovered...
OfflRouter Malware Evades Detection in Ukraine for Almost a Decade

4/18/2024 10:25:00 AM

Select Ukrainian government networks have remained infected with a malware called OfflRouter since 2015. Cisco Talos said its findings are based on an analysis of over 100 confidential documents that...
FIN7 Cybercrime Group Targeting U.S. Auto Industry with Carbanak Backdoor

4/18/2024 9:58:00 AM

The infamous cybercrime syndicate known as FIN7 has been linked to a spear-phishing campaign targeting the U.S. automotive industry to deliver a known backdoor called Carbanak (aka Anunak). "FIN7 identified...
Recover from Ransomware in 5 Minutes—We will Teach You How!

4/18/2024 7:17:00 AM

Super Low RPO with Continuous Data Protection:Dial Back to Just Seconds Before an Attack Zerto, a Hewlett Packard Enterprise company, can help you detect and recover from ransomware in near real-time...
New Android Trojan 'SoumniBot' Evades Detection with Clever Tricks

4/18/2024 6:31:00 AM

A new Android trojan called SoumniBot has been detected in the wild targeting users in South Korea by leveraging weaknesses in the manifest extraction and parsing procedure. The malware is "notable for...
How to Conduct Advanced Static Analysis in a Malware Sandbox

4/18/2024 6:31:00 AM

Sandboxes are synonymous with dynamic malware analysis. They help to execute malicious files in a safe virtual environment and observe their behavior. However, they also offer plenty of value in terms...
Global Police Operation Disrupts 'LabHost' Phishing Service, Over 30 Arrested Worldwide

4/18/2024 6:28:00 AM

As many as 37 individuals have been arrested as part of an international crackdown on a cybercrime service called LabHost that has been used by criminal actors to steal personal credentials from victims...
Hackers Exploit OpenMetadata Flaws to Mine Crypto on Kubernetes

4/18/2024 1:54:00 AM

Threat actors are actively exploiting critical vulnerabilities in OpenMetadata to gain unauthorized access to Kubernetes workloads and leverage them for cryptocurrency mining activity. That's according...

Who Stole 3.6M Tax Records from South Carolina?

4/16/2024 7:26:55 AM

For nearly a dozen years, residents of South Carolina have been kept in the dark by state and federal investigators over who was responsible for hacking into the state's revenue department in 2012 and...
Crickets from Chirp Systems in Smart Lock Key Leak

4/15/2024 10:51:17 AM

The U.S. government is warning that smart locks securing entry to an estimated 50,000 dwellings nationwide contain hard-coded credentials that can be used to remotely open any of the locks. The lock's...
Why CISA is Warning CISOs About a Breach at Sisense

4/11/2024 4:48:06 PM

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) said today it is investigating a breach at business intelligence company Sisense, whose products are designed to allow companies to view...
Twitter’s Clumsy Pivot to X.com Is a Gift to Phishers

4/10/2024 10:28:17 AM

On April 9, Twitter/X began automatically modifying links that mention "twitter.com" to redirect to "x.com" instead. But over the past 48 hours, dozens of new domain names have been registered that demonstrate...
April’s Patch Tuesday Brings Record Number of Fixes

4/9/2024 4:28:17 PM

If only Patch Tuesdays came around infrequently -- like total solar eclipse rare -- instead of just creeping up on us each month like The Man in the Moon. Although to be fair, it would be tough for Microsoft...
Fake Lawsuit Threat Exposes Privnote Phishing Sites

4/4/2024 10:12:16 AM

A cybercrook who has been setting up websites that mimic the self-destructing message service Privnote.com accidentally exposed the breadth of their operations recently when they threatened to sue a software...
‘The Manipulaters’ Improve Phishing, Still Fail at Opsec

4/3/2024 9:16:25 AM

Roughly nine years ago, KrebsOnSecurity profiled a Pakistan-based cybercrime group called "The Manipulaters," a sprawling web hosting network of phishing and spam delivery platforms. In January 2024,...
Thread Hijacking: Phishes That Prey on Your Curiosity

3/28/2024 7:56:13 PM

Thread hijacking attacks. They happen when someone you know has their email account compromised, and you are suddenly dropped into an existing conversation between the sender and someone else. These missives...
Recent ‘MFA Bombing’ Attacks Targeting Apple Users

3/26/2024 11:37:54 AM

Several Apple customers recently reported being targeted in elaborate phishing attacks that involve what appears to be a bug in Apple's password reset feature. In this scenario, a target's Apple devices...
Mozilla Drops Onerep After CEO Admits to Running People-Search Networks

3/22/2024 3:02:41 PM

The nonprofit organization that supports the Firefox web browser said today it is winding down its new partnership with Onerep, an identity protection service recently bundled with Firefox that offers...

'MagicDot' Windows Weakness Allows Unprivileged Rootkit Activity

4/19/2024 5:38:23 AM

Malformed DOS paths in file-naming nomenclature in Windows could be used to conceal malicious content, files, and processes.
Cyberattack Takes Frontier Communications Offline

4/19/2024 12:15:24 AM

The local phone and business communications company said that attackers accessed unspecified PII, after infiltrating its internal networks.
Evil XDR: Researcher Turns Palo Alto Software Into Perfect Malware

4/18/2024 11:20:00 PM

It turns out that a powerful security solution can double as even more powerful malware, capable of granting comprehensive access over a targeted machine.
Cisco's Complex Road to Deliver on its Hypershield Promise

4/18/2024 6:00:26 PM

The tech giant tosses together a word salad of today's business drivers — AI, cloud-native, digital twins — and describes a comprehensive security strategy for the future, but can the company build the...
Cisco Warns of Massive Surge in Password-Spraying Attacks on VPNs

4/18/2024 4:39:12 PM

Attackers are indiscriminately targeting VPNs from Cisco and several other vendors in what may be a reconnaissance effort, the vendor says.
Auburn's McCrary Institute and Oak Ridge National Laboratory to Partner on Regional Cybersecurity Center

4/18/2024 4:32:04 PM
ICS Network Controllers Open to Remote Exploit, No Patches Available

4/18/2024 4:25:50 PM

CISA advisory warns of critical ICS device flaws, but a lack of available fixes leaves network administrators on defense to prevent exploits.
GPT-4 Can Exploit Most Vulns Just by Reading Threat Advisories

4/18/2024 4:23:46 PM

Existing AI technology can allow hackers to automate exploits for public vulnerabilities in minutes flat. Very soon, diligent patching will no longer be optional.
Russian APT Group Thwarted in Attack on US Automotive Manufacturer

4/18/2024 3:56:43 PM

The group gained access to the victim network by duping IT employees with high administrative-access privileges.
Rebalancing NIST: Why 'Recovery' Can't Stand Alone

4/18/2024 10:00:00 AM

The missing ingredient in NIST's newest cybersecurity framework? Recovery.

No Data Found

Student Loan Breach Exposes 2.5M Records

8/31/2022 8:57:48 AM

2.5 million people were affected, in a breach that could spell more trouble down the line.
Watering Hole Attacks Push ScanBox Keylogger

8/30/2022 12:00:43 PM

Researchers uncover a watering hole attack likely carried out by APT TA423, which attempts to plant the ScanBox JavaScript-based reconnaissance tool.
Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firms

8/29/2022 10:56:19 AM

Over 130 companies tangled in sprawling phishing campaign that spoofed a multi-factor authentication system.
Ransomware Attacks are on the Rise

8/26/2022 12:44:27 PM

Lockbit is by far this summer’s most prolific ransomware group, trailed by two offshoots of the Conti group.
Cybercriminals Are Selling Access to Chinese Surveillance Cameras

8/25/2022 2:47:15 PM

Tens of thousands of cameras have failed to patch a critical, 11-month-old CVE, leaving thousands of organizations exposed.
Twitter Whistleblower Complaint: The TL;DR Version

8/24/2022 10:17:04 AM

Twitter is blasted for security and privacy lapses by the company’s former head of security who alleges the social media giant’s actions amount to a national security risk.
Firewall Bug Under Active Attack Triggers CISA Warning

8/23/2022 9:19:58 AM

CISA is warning that Palo Alto Networks’ PAN-OS is under active attack and needs to be patched ASAP.
Fake Reservation Links Prey on Weary Travelers

8/22/2022 9:59:06 AM

Fake travel reservations are exacting more pain from the travel weary, already dealing with the misery of canceled flights and overbooked hotels.
iPhone Users Urged to Update to Patch 2 Zero-Days

8/19/2022 11:25:56 AM

Separate fixes to macOS and iOS patch respective flaws in the kernel and WebKit that can allow threat actors to take over devices and are under attack.
Google Patches Chrome’s Fifth Zero-Day of the Year

8/18/2022 10:31:38 AM

An insufficient validation input flaw, one of 11 patched in an update this week, could allow for arbitrary code execution and is under active attack.

Cyber Talent Insights: Charting your path in cybersecurity. (Part 2 of 3)

4/19/2024 1:00:00 AM

In this episode, we shift our point of view to provide guidance for an individual's first career or perhaps considering a career change transitioning into the field. We discuss a market-driven approach...
From phishing to felony.

4/18/2024 4:10:00 PM

A major Phishing-as-a-service operation gets taken down by international law enforcement. US election officials are warned of nation-state influence operations. The house votes to limit the feds’ purchase...
EU delays cybersecurity label vote to May. Experts state that AI is making ransomware easier to use.

4/18/2024 4:00:00 PM

EU delays cybersecurity label vote to May. Experts state that AI is making ransomware easier to use.
A look at foreign influence operations focused on the US elections.

4/18/2024 12:00:00 PM

Law enforcement disrupts LabHost phishing service. Cyberattack hits New York State Legislature office.
Is change presenting a window of opportunity for attackers?

4/18/2024 1:00:00 AM

Trevin Edgeworth, Red Team Practice Director at Bishop Fox, is discussing how change, like M&A, staff, tech, lack of clarity or even self-promotion within and around security environments presents windows...
Discussions revisited.

4/18/2024 1:00:00 AM

This week, Dave and Ben are joined by Robert Carolina, Senior Teaching Fellow, Information Security Group at Royal Holloway, University of London, and all three of them dive into discussing some of the...
The rebirth of Russia's cyber warfare.

4/17/2024 4:10:00 PM

A Russian hacker group boldly targets critical infrastructure. The Change Healthcare ransomware attack is projected to cost over a billion dollars. Three hundred bucks is the going rate for a SIM swap...
Armis acquires Silk Security. Cohesity secures $150 million in Series F round. Onum raises $28 million in Series A funding.

4/17/2024 4:00:00 PM

Armis acquires Silk Security. Cohesity secures $150 million in Series F round. Onum raises $28 million in Series A funding.
Harnessing Cyber Talent: Insights for Tomorrow's Workforce

4/17/2024 1:53:00 PM

Takeaways from episode one of the Cyber Talent Insights special series podcast, "Cyber Talent Insights: Navigating the landscape for enterprise organizations" featuring Dr. Heather Monthie, Cyber Workforce...
Mandiant ties OT attacks to Russia's GRU. Change Healthcare attack has cost $872 million so far.

4/17/2024 12:00:00 PM

Surge in brute-force attacks against VPNs and SSH services.

How Attackers Can Own a Business Without Touching the Endpoint

4/19/2024 7:08:00 AM

Attackers are increasingly making use of “networkless” attack techniques targeting cloud apps and identities. Here’s how attackers can (and are) compromising organizations – without ever needing to touch...
Akira Ransomware Gang Extorts $42 Million; Now Targets Linux Servers

4/19/2024 7:01:00 AM

Threat actors behind the Akira ransomware group have extorted approximately $42 million in illicit proceeds after breaching the networks of more than 250 victims as of January 1, 2024. "Since March 2023...
Hackers Target Middle East Governments with Evasive "CR4T" Backdoor

4/19/2024 2:16:00 AM

Government entities in the Middle East have been targeted as part of a previously undocumented campaign to deliver a new backdoor dubbed CR4T. Russian cybersecurity company Kaspersky said it discovered...
OfflRouter Malware Evades Detection in Ukraine for Almost a Decade

4/18/2024 10:25:00 AM

Select Ukrainian government networks have remained infected with a malware called OfflRouter since 2015. Cisco Talos said its findings are based on an analysis of over 100 confidential documents that...
FIN7 Cybercrime Group Targeting U.S. Auto Industry with Carbanak Backdoor

4/18/2024 9:58:00 AM

The infamous cybercrime syndicate known as FIN7 has been linked to a spear-phishing campaign targeting the U.S. automotive industry to deliver a known backdoor called Carbanak (aka Anunak). "FIN7 identified...
Recover from Ransomware in 5 Minutes—We will Teach You How!

4/18/2024 7:17:00 AM

Super Low RPO with Continuous Data Protection:Dial Back to Just Seconds Before an Attack Zerto, a Hewlett Packard Enterprise company, can help you detect and recover from ransomware in near real-time...
New Android Trojan 'SoumniBot' Evades Detection with Clever Tricks

4/18/2024 6:31:00 AM

A new Android trojan called SoumniBot has been detected in the wild targeting users in South Korea by leveraging weaknesses in the manifest extraction and parsing procedure. The malware is "notable for...
How to Conduct Advanced Static Analysis in a Malware Sandbox

4/18/2024 6:31:00 AM

Sandboxes are synonymous with dynamic malware analysis. They help to execute malicious files in a safe virtual environment and observe their behavior. However, they also offer plenty of value in terms...
Global Police Operation Disrupts 'LabHost' Phishing Service, Over 30 Arrested Worldwide

4/18/2024 6:28:00 AM

As many as 37 individuals have been arrested as part of an international crackdown on a cybercrime service called LabHost that has been used by criminal actors to steal personal credentials from victims...
Hackers Exploit OpenMetadata Flaws to Mine Crypto on Kubernetes

4/18/2024 1:54:00 AM

Threat actors are actively exploiting critical vulnerabilities in OpenMetadata to gain unauthorized access to Kubernetes workloads and leverage them for cryptocurrency mining activity. That's according...

Who Stole 3.6M Tax Records from South Carolina?

4/16/2024 7:26:55 AM

For nearly a dozen years, residents of South Carolina have been kept in the dark by state and federal investigators over who was responsible for hacking into the state's revenue department in 2012 and...
Crickets from Chirp Systems in Smart Lock Key Leak

4/15/2024 10:51:17 AM

The U.S. government is warning that smart locks securing entry to an estimated 50,000 dwellings nationwide contain hard-coded credentials that can be used to remotely open any of the locks. The lock's...
Why CISA is Warning CISOs About a Breach at Sisense

4/11/2024 4:48:06 PM

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) said today it is investigating a breach at business intelligence company Sisense, whose products are designed to allow companies to view...
Twitter’s Clumsy Pivot to X.com Is a Gift to Phishers

4/10/2024 10:28:17 AM

On April 9, Twitter/X began automatically modifying links that mention "twitter.com" to redirect to "x.com" instead. But over the past 48 hours, dozens of new domain names have been registered that demonstrate...
April’s Patch Tuesday Brings Record Number of Fixes

4/9/2024 4:28:17 PM

If only Patch Tuesdays came around infrequently -- like total solar eclipse rare -- instead of just creeping up on us each month like The Man in the Moon. Although to be fair, it would be tough for Microsoft...
Fake Lawsuit Threat Exposes Privnote Phishing Sites

4/4/2024 10:12:16 AM

A cybercrook who has been setting up websites that mimic the self-destructing message service Privnote.com accidentally exposed the breadth of their operations recently when they threatened to sue a software...
‘The Manipulaters’ Improve Phishing, Still Fail at Opsec

4/3/2024 9:16:25 AM

Roughly nine years ago, KrebsOnSecurity profiled a Pakistan-based cybercrime group called "The Manipulaters," a sprawling web hosting network of phishing and spam delivery platforms. In January 2024,...
Thread Hijacking: Phishes That Prey on Your Curiosity

3/28/2024 7:56:13 PM

Thread hijacking attacks. They happen when someone you know has their email account compromised, and you are suddenly dropped into an existing conversation between the sender and someone else. These missives...
Recent ‘MFA Bombing’ Attacks Targeting Apple Users

3/26/2024 11:37:54 AM

Several Apple customers recently reported being targeted in elaborate phishing attacks that involve what appears to be a bug in Apple's password reset feature. In this scenario, a target's Apple devices...
Mozilla Drops Onerep After CEO Admits to Running People-Search Networks

3/22/2024 3:02:41 PM

The nonprofit organization that supports the Firefox web browser said today it is winding down its new partnership with Onerep, an identity protection service recently bundled with Firefox that offers...

'MagicDot' Windows Weakness Allows Unprivileged Rootkit Activity

4/19/2024 5:38:23 AM

Malformed DOS paths in file-naming nomenclature in Windows could be used to conceal malicious content, files, and processes.
Cyberattack Takes Frontier Communications Offline

4/19/2024 12:15:24 AM

The local phone and business communications company said that attackers accessed unspecified PII, after infiltrating its internal networks.
Evil XDR: Researcher Turns Palo Alto Software Into Perfect Malware

4/18/2024 11:20:00 PM

It turns out that a powerful security solution can double as even more powerful malware, capable of granting comprehensive access over a targeted machine.
Cisco's Complex Road to Deliver on its Hypershield Promise

4/18/2024 6:00:26 PM

The tech giant tosses together a word salad of today's business drivers — AI, cloud-native, digital twins — and describes a comprehensive security strategy for the future, but can the company build the...
Cisco Warns of Massive Surge in Password-Spraying Attacks on VPNs

4/18/2024 4:39:12 PM

Attackers are indiscriminately targeting VPNs from Cisco and several other vendors in what may be a reconnaissance effort, the vendor says.
Auburn's McCrary Institute and Oak Ridge National Laboratory to Partner on Regional Cybersecurity Center

4/18/2024 4:32:04 PM
ICS Network Controllers Open to Remote Exploit, No Patches Available

4/18/2024 4:25:50 PM

CISA advisory warns of critical ICS device flaws, but a lack of available fixes leaves network administrators on defense to prevent exploits.
GPT-4 Can Exploit Most Vulns Just by Reading Threat Advisories

4/18/2024 4:23:46 PM

Existing AI technology can allow hackers to automate exploits for public vulnerabilities in minutes flat. Very soon, diligent patching will no longer be optional.
Russian APT Group Thwarted in Attack on US Automotive Manufacturer

4/18/2024 3:56:43 PM

The group gained access to the victim network by duping IT employees with high administrative-access privileges.
Rebalancing NIST: Why 'Recovery' Can't Stand Alone

4/18/2024 10:00:00 AM

The missing ingredient in NIST's newest cybersecurity framework? Recovery.

Powered by Higher Logic