By: Sara Faradji
June 27, 2022
Monday Mix: OpenSSL, Confluence RCE, and Burnout
By: Sara Faradji
June 27, 2022
Cybrary has you covered this week with brand new courses, blog posts, podcast episode, and free live sessions covering the latest threats.
From burnout to mitigating vulnerabilities, security teams are struggling and managers are overwhelmed. And dealing with security apathy across the organization keeps a security team awake at all hours. Improving the situation is not an easy task, but there's hope! Join Cybrary's Chloé Messdaghi in a new live series, starting this Wednesday, June 29th @ 11 AM ET.
Tuesday, June 28th @ 1 PM ET. Register Here → Role Dive with Chloé - Network Engineer
Thursday, June 30th @ 1 PM ET. Sign up Today → How to Onboard, Develop, and Retain Your Security Team
Everyone is talking about the Atlassian Confluence OGNL injection flaw (CVE-2022-26134). Now you can securely exploit, detect, and mitigate this vulnerability in our new course!
Leveraging this remote code execution (RCE) vulnerability, adversaries can execute arbitrary code on a Confluence server to implement malware. Think like a penetration tester as you explore not one, but two distinct ways to exploit this critical flaw.
CVE Series: Confluence RCE (CVE-2022-26134) | Clint Kehr
Adversaries can leverage the OpenSSL Infinite Loop flaw (CVE-2022-0778) to cause major damage, including a denial-of-service (DOS) attack. Can you exploit this vulnerability in a matter of seconds? Try it now in our new course, where you can test your skills in a secure lab environment!
CVE Series: OpenSSL Infinite Loop (CVE-2022-0778) | Raymond Evans
Take our latest CIS Critical Security Controls course covering control 14: Security Awareness and Skills Training to learn how to train teams to recognize and report security incidents. Plus, gain insights on the significance of transmitting data over secure networks.
Read 📖 More
Check out this week’s blog post to learn all about what the Cybrary Threat Intelligence Group (CTIG) has been up to! We’ve hired our red team expert and resident “Chief Thief,” Matt Mullins, as a Senior Security Researcher. Plus, our CTIG team has new research to share on the Microsoft Office vulnerability that caught the world’s attention, CVE-2022-30190 (Follina).
As cybersecurity teams become more advanced, adversaries get craftier. That's why Cybrary's blue teamer Owen Dubiel and red teamer Matt Mullins joined forces to develop purple team training campaigns based on real-world threats. Hear all about how Owen and Matt created training exercises to help you improve your situational awareness and detection strategies.
Start 🎧 listening ▶️
Preventing Data Exfiltration and Extortion Attacks | The Cybrary Podcast Ep. 86
Have a great week!
Let's build your cybersecurity career together
Accelerate in your role, prepare for certifications, and develop cutting edge skills with the most in-demand training in the industry.
2,000+learning activities led by highly experienced cybersecurity professionals