0P3N Blog

Cybrary’s Open Blog is a user contributed cybersecurity knowledge base that brings together content highlighting the latest tools, exploits, technologies and insights in the industry.

Career Advice for InfoSec Professionals
By: Cybrary Staff
July 29, 2022

Has it been challenging finding or applying for jobs as an information security professional? Perhaps you don't know where to begin or how to craft a stand-out resume for potential employers. Don’t worry; Cybrary’s here for you! Join us monthly for our career advice series, where we'll cover different topics related to recruiting and hiring on security teams, such as resumes ...

Monday Mix-in: Hiding Under-the-Radar
By: Sara Faradji
July 25, 2022

Hi Cybrary fans! Whether you're a defender, ethical hacker, cloud enthusiast, or part of the IT crowd, we have something for everyone in this week's new content! New Courses In the nefarious business of cybercrime, the specialized “initial access broker” (IAB) plays the long game of doing thorough research and reconnaissance on a target before exploiting vulnerable web applications. After gaining initial ...

Monday Mix-in: Human Centered Cybersecurity
By: Sara Faradji
July 18, 2022

Hi everyone! Ready to level up your cyber skills training and listen to experts share strategies on how to support your security teams? You're in luck with all the new content we have to offer this week! Featured Event Looking for advice on finding a job, or interview best practices? Tomorrow marks the start of our new Career Advice webinar series with Cybrary ...

Burnout on Security Teams
By: Cybrary Staff
July 13, 2022

From burnout to mitigating vulnerabilities, security teams are struggling and managers are overwhelmed. In our Improving Security Teams webinar series, Chief Impact Officer, Chloé Messdaghi, will explore how to improve security team wellness, starting with how to address the most pressing issue facing the workforce today: burnout. To watch this on-demand webinar, view the recording here! What is burnout? Let’s first begin ...

A Deep Dive into the Cybersecurity Network Engineer Role
By: Cybrary Staff
July 7, 2022

Cybersecurity jobs have seen a lot of growth in the past few years. With so many career paths to choose from, we've decided to create a monthly “Role Dive” series, where each month we'll examine a particular job on a security team. This month we chatted with Mike Benjamin from Fastly to understand what it's like to be a Network ...

CTIG Coverage of Black Lotus Labs’ ZuoRAT Report
By: CTIG
June 28, 2022

Overview Note: This blog post discusses active research by third parties into an ongoing threat. This information should be considered preliminary and will be updated as research continues. On June 28, 2022, the threat intelligence section of Lumen’s Black Lotus Labs posted research into an ongoing and highly targeted campaign against North American and Western European organizations, which leverages the massive ...

Monday Mix-in: OpenSSL, Confluence RCE, and Burnout
By: Sara Faradji
June 27, 2022

Hi everyone! Cybrary has you covered this week with brand new courses, blog posts, podcast episode, and free live sessions covering the latest threats. Featured Event From burnout to mitigating vulnerabilities, security teams are struggling and managers are overwhelmed. And dealing with security apathy across the organization keeps a security team awake at all hours. Improving the situation is not an easy task, ...

CTIG Coverage of CVE-2022-30190 (Follina)
By: Cybrary Staff
June 23, 2022

Overview Note: This blog post discusses active research by the Cybrary Threat Intelligence Group (CTIG) into an ongoing threat. This information should be considered preliminary and will be updated as research continues. On May 27 2022, the Cyber Security Research Team naosec tweeted about an interesting malware document submission to VirusTotal from Belarus. Naosec’s tweet further highlighted the maldocs ability to ...

Matt Mullins Joins Cybrary’s New Threat Intelligence Group
By: Cybrary Staff
June 23, 2022

Another day, another exciting new addition to our growing team! We’re welcoming long-time Cybrary instructor, Matt Mullins, to the Cybrary Threat Intelligence Group (CTIG) team as a Senior Security Researcher, where he’ll focus on adversary emulations of various threat actor groups and developing additional red team content. Matt joins new Cybrary team members and cybersecurity influencers, David Maynor and Chloé ...

How Can Cyber Experts Help You Prevent Vishing Attacks?
By: Evan Morris
June 23, 2022

Social engineering attacks are becoming more sophisticated, and the number of phishing attempts is especially growing each year. In 2021, 69% of companies have reported that they have been targets of a vishing scam — a ten percent increase compared to the year 2020. Even worse, according to Phishlabs, over the course of 2021 the overall [reported increase in vishing ...