In its annual Red Report, a body of research that analyzes real-world attacker techniques using large-scale attack simulation data, Picus Labs warns cybersecurity professionals that threat actors are rapidly shifting away from ransomware encryption to parasitic "sleeperware" extortion as their means to loot organizations for millions of dollars per attack. https://www.zdnet.com/article/sleeperware-malware-sneaks-waits-ransomware-decline/

👉 Members who've passed the CISSP 🏆

It has been a while since I posted anything. First I passed the CISSP on Dec 6th, and about one month later it was official. I couldn't have done it without this group. I would also say if you have not signed up for the CISSP.app, you really should. I found it to be very helpful resource. I also wanted to say the reason, I haven't been active on this site is I was pursuing my CCSP, which I passed yesterday. Anyway, thanks to everyone in this group and good luck with your CISSP journey.

Some browser extensions, including ones with thousands of five-star reviews, can see your passwords as you type them into websites. A vulnerability in how browsers share page data with extensions gives them unrestricted access to everything on a web page, and some have been caught leaking sensitive user information because of it. https://www.makeuseof.com/browser-extensions-can-see-your-passwords/

Trusted Access for Cyber is an identity and trust-based framework designed to help ensure enhanced cyber capabilities are being placed in the right hands. https://openai.com/index/trusted-access-for-cyber/