Monday Mix: OpenSSL, Confluence RCE, and Burnout

Hi everyone!

Cybrary has you covered this week with brand new courses, blog posts, podcast episode, and free live sessions covering the latest threats.

Featured Event

From burnout to mitigating vulnerabilities, security teams are struggling and managers are overwhelmed. And dealing with security apathy across the organization keeps a security team awake at all hours. Improving the situation is not an easy task, but there's hope! Join Cybrary's Chloé Messdaghi in a new live series, starting this Wednesday, June 29th @ 11 AM ET.

Register to join → Improving Security Teams: Part 1- Reducing Team Burnout

More Events...

Tuesday, June 28th @ 1 PM ET. Register Here → Role Dive with Chloé - Network Engineer

Thursday, June 30th @ 1 PM ET. Sign up Today → How to Onboard, Develop, and Retain Your Security Team

New Courses

Everyone is talking about the Atlassian Confluence OGNL injection flaw (CVE-2022-26134). Now you can securely exploit, detect, and mitigate this vulnerability in our new course!

Leveraging this remote code execution (RCE) vulnerability, adversaries can execute arbitrary code on a Confluence server to implement malware. Think like a penetration tester as you explore not one, but two distinct ways to exploit this critical flaw.

CVE Series: Confluence RCE (CVE-2022-26134) | Clint Kehr

Adversaries can leverage the OpenSSL Infinite Loop flaw (CVE-2022-0778) to cause major damage, including a denial-of-service (DOS) attack. Can you exploit this vulnerability in a matter of seconds? Try it now in our new course, where you can test your skills in a secure lab environment!

CVE Series: OpenSSL Infinite Loop (CVE-2022-0778) | Raymond Evans

Take our latest CIS Critical Security Controls course covering control 14: Security Awareness and Skills Training to learn how to train teams to recognize and report security incidents. Plus, gain insights on the significance of transmitting data over secure networks.

CIS Critical Security Control 14: Security Awareness and Skills Training | Corey Holzer

Read 📖 More

Check out this week’s blog post to learn all about what the Cybrary Threat Intelligence Group (CTIG) has been up to! We’ve hired our red team expert and resident “Chief Thief,” Matt Mullins, as a Senior Security Researcher. Plus, our CTIG team has new research to share on the Microsoft Office vulnerability that caught the world’s attention, CVE-2022-30190 (Follina).

CTIG Coverage of CVE-2022-30190 (Follina)

Matt Mullins Joins Cybrary’s New Threat Intelligence Group

Cybersecurity Bootcamps vs. Cybrary

How Can Cyber Experts Help You Prevent Vishing Attacks?

New Podcast

As cybersecurity teams become more advanced, adversaries get craftier. That's why Cybrary's blue teamer Owen Dubiel and red teamer Matt Mullins joined forces to develop purple team training campaigns based on real-world threats. Hear all about how Owen and Matt created training exercises to help you improve your situational awareness and detection strategies.

Start 🎧 listening ▶️

Preventing Data Exfiltration and Extortion Attacks | The Cybrary Podcast Ep. 86

Have a great week!