Modeling

Threat modeling: As easy as OATMEAL

Sep 22, 2024 by iHash Leave a Comment

Threat actors are constantly evolving their tactics, techniques, and procedures (TTPs), which often makes understanding and mitigating potential threats a daunting task. Traditional threat modeling frameworks can fall short or even be seen as intimidating to defenders trying to model potential threats. This is often due to the complexity or amount of effort and knowledge … [Read more...] about Threat modeling: As easy as OATMEAL

Introducing the Open Supply-Chain Information Modeling (OSIM) Technical Committee

May 31, 2024 by iHash Leave a Comment

Supply chain security has emerged as a critical concern for businesses in every sector. The importance of standardized, trustworthy, and interoperable information models cannot be overstated. Addressing this need, the OASIS Open Supply Chain Information Modeling (OSIM) Technical Committee (TC) is being formed to enhance supply chain management worldwide. The initial TC members … [Read more...] about Introducing the Open Supply-Chain Information Modeling (OSIM) Technical Committee

The Need for Continuous and Dynamic Threat Modeling

Apr 22, 2021 by iHash Leave a Comment

This blog is co-authored by Mohammad Iqbal and is part four of a four-part series about DevSecOps. The trend towards accelerated application development, and regular updates to an architecture through an agile methodology, reduces the efficacy and effectiveness of point-in-time threat modeling. This recognition led us to explore and strategize ways to continuously, and … [Read more...] about The Need for Continuous and Dynamic Threat Modeling

Luke Cavanaugh’s advice for veterans seeking a new community

Luke Cavanaugh spent almost 13 years in the US Air Force before he was declared medically unfit for service — and just six weeks later, he became a civilian. Because it was a medical discharge, he didn’t originally have a set termination date. Instead, during the first week of his internship at Elastic, Luke found out […]

PAN-OS Firewall Vulnerability Under Active Exploitation – IoCs Released

Nov 16, 2024Ravie LakshmananVulnerability / Network Security Palo Alto Networks has released new indicators of compromise (IoCs) a day after the network security vendor confirmed that a new zero-day vulnerability impacting its PAN-OS firewall management interface has been actively exploited in the wild. To that end, the company said it observed malicious activity originating from […]

Apple Arcade unwraps new games for the holiday season

November 13, 2024 UPDATE Apple Arcade unwraps new games for the holiday season Fifteen new games join the service, including Skate City: New York, Talking Tom Blast Park, Gears & Goo, and FINAL FANTASY IV (3D REMAKE)+ This holiday season, Apple is launching new games for everyone from solo players to family and friends who […]

IBM Launches Its Most Advanced Quantum Computers, Fueling New Scientific Value and Progress towards Quantum Advantage

Qiskit, the world’s most performant quantum software, can extend length and complexity of certain circuits to 5,000 two-qubit operations with accurate results on IBM quantum computers IBM (NYSE: IBM) announced quantum hardware and software advancements to execute complex algorithms on IBM quantum computers with record levels of scale, speed, and accuracy. IBM Quantum Heron, the company’s most performant quantum processor to-date […]

Apple debuts The Weeknd’s immersive music experience for Apple Vision Pro

November 14, 2024 UPDATE Apple debuts The Weeknd: Open Hearts, the first-of-its-kind immersive music experience for Apple Vision Pro Today, Apple released The Weeknd: Open Hearts, a breathtaking immersive music experience from the seven-time diamond-certified artist, available exclusively on Apple Vision Pro for a limited time. Open Hearts is captured in Apple Immersive Video, a remarkable 180-degree […]

Experts Uncover 70,000 Hijacked Domains in Widespread ‘Sitting Ducks’ Attack Scheme

Multiple threat actors have been found taking advantage of an attack technique called Sitting Ducks to hijack legitimate domains for using them in phishing attacks and investment fraud schemes for years. The findings come from Infoblox, which said it identified nearly 800,000 vulnerable registered domains over the past three months, of which approximately 9% (70,000) […]

Pangu Releases Updated Jailbreak of iOS 9 Pangu9 v1.2.0

Pangu has updated its jailbreak utility for iOS 9.0 to 9.0.2 with a fix for the manage storage bug and the latest version of Cydia. Change log V1.2.0 (2015-10-27) 1. Bundle latest Cydia with new Patcyh which fixed failure to open url scheme in MobileSafari 2. Fixed the bug that “preferences -> Storage&iCloud Usage -> […]

Apple Blocks Pangu Jailbreak Exploits With Release of iOS 9.1

Apple has blocked exploits used by the Pangu Jailbreak with the release of iOS 9.1. Pangu was able to jailbreak iOS 9.0 to 9.0.2; however, in Apple’s document on the security content of iOS 9.1, PanguTeam is credited with discovering two vulnerabilities that have been patched.

Pangu Releases Updated Jailbreak of iOS 9 Pangu9 v1.1.0

Pangu has released an update to its jailbreak utility for iOS 9 that improves its reliability and success rate. Change log V1.1.0 (2015-10-21) 1. Improve the success rate and reliability of jailbreak program for 64bit devices 2. Optimize backup process and improve jailbreak speed, and fix an issue that leads to fail to […]

Activator 1.9.6 Released With Support for iOS 9, 3D Touch

Ryan Petrich has released Activator 1.9.6, an update to the centralized gesture, button, and shortcut manager, that brings support for iOS 9 and 3D Touch.

JBL Flip 6 Portable Bluetooth Speaker (Open Box) for $74

Navee V25 300W Foldable e-Scooter for $299

Smart Tracker Includes Key Ring – Works with Apple Find My App (2-Pack) for $34

Harmony Premium Plan Lifetime Subscription for $99

Lenovo 11.6" 100e Chromebook 2nd Gen (2019) MediaTek MT8173C 4GB RAM 16GB eMMC (Refurbished) for $54

Threat modeling: As easy as OATMEAL

Introducing the Open Supply-Chain Information Modeling (OSIM) Technical Committee

The Need for Continuous and Dynamic Threat Modeling