David Jimenez

🚨 See what you once couldn’t. Stop what you never knew was there. Many security teams think they’re seeing everything, until it’s too late. Traditional tools miss these blind spots. Cortex XSIAM and XDR don’t. Dive into the hidden gaps in traditional security visibility and how to uncover what your tools might be missing. 🔍 Stay ahead of threats. Eliminate blind spots. https://bit.ly/45mBGiv

106

Download Pentera Labs Report - revealing three new critical injection points in the ingress-nginx controller, building on Wiz’s IngressNightmare CVE. These overlooked vulnerabilities could let attackers hijack traffic, spoof headers, or reach unauthorized backend services - They exist in one of the most widely used ingress controllers in Kubernetes, putting countless environments at risk. This research highlights how small misconfigurations can lead to major exposure in modern cloud-native architectures. What’s Inside: ✅ 3 new injection vulnerabilities in ingress-nginx ✅ How attackers find and exploit CVEs in open source ✅ Actionable tips to secure your Kubernetes environment https://lnkd.in/eHtX6EdP

9

1 Comment

Your attackers don’t care about network vs endpoint vs cloud. They care about getting in and staying in. NetWitness breaks down detection silos, giving SOC teams one place to see and respond across everything. One platform. Zero blind spots. See what full-spectrum detection actually looks like. - https://lnkd.in/gzpMzA_N #Cybersecurity #HybridThreats #NetWitness #SOCplatform

19

1 Comment

Lock down your Tiger Data services, without the overhead of a VPC. Here’s a quick walkthrough of using IP Allow Lists to control access to just trusted networks.

14

🚫 Your firewall isn't broken—it's just outdated. AI-powered attacks are faster than ever. Still exposing your network with public IPs? You're playing defense with a blindfold. Zscaler's Zero Trust model flips the script—no public IPs, no easy targets. It's not magic. It's strategy. 👀 The most secure network is the one they can't see. 🔎 Discover how it works → https://lnkd.in/gp_qy3N2

61

1 Comment

"What a better place to perform research and development, than a place that defines our future." -Joshua Sitta, Sittadel Today we signed an agreement with Florida Polytechnic University that will allow Sittadel and Florida Polytechnic University to create a student powered (SOC) Security Operations Center. This will be led by Garrett Poorbaugh who will also lead the research and development arm of the SOC. Stay tuned for the good things to come! This is just one more step closer in realizing our mission of making cybersecurity more accessible. https://lnkd.in/enDxfXZQ #cybersecurity #partnership #sittadel

110

15 Comments

Cisco ISE Caveat – CoA Port Bounce Failure (Bug CSCws25187) Heads‑up for anyone running Cisco ISE 3.3.0.430 with profiling‑based CoA port bounce. There is an open severe caveat (CSCws25187 – “DelayedCoaEvent which is not registered in handlers”) where ISE fails to execute the profiling CoA port bounce, resulting in incorrect subnet/VLAN assignment even though the endpoint is correctly profiled and authorized.​ Impact observed: 1. Authentications succeed and policies hit the expected profiling rule, but the endpoint stays in the old VLAN/subnet until someone manually bounces the port or clears the session on the switch/WLC.​ 2. Logs may show CoA events or internal “DelayedCoaEvent” messages, but the event is not handled by the CoA engine as expected. Conditions: 1. ISE 3.3.0.430. 2. CoA configured as Port Bounce for profiling events.​ Workarounds (operational only, no official fix yet): 1. Prefer CoA Reauth instead of Port Bounce where possible. 2. Use closed-by-default access VLANs so endpoints only get an IP after final authorization. 3. Use automation (scripts/EEM/DNAC) to detect mismatched VLAN/IP and perform controlled port bounces.​ At the time of writing, there is no fixed release listed for this bug, so anyone heavily relying on profiling + CoA Port Bounce should review their design and monitoring until Cisco publishes a maintenance release with a fix.​

33

2 Comments

ZTNA gets you on the track - but it won't get you across the Zero Trust finish line. 🏁 It’s built for access control. Not for visibility. Not for threat prevention. Not policy enforcement. Winning the Zero Trust race takes a platform built to see and secure everything, adapt in real time and at full speed—no blind spots, no pit stops. Read the blog to see how to go the distance: 👉https://bit.ly/45bjYyo #ZeroTrust #SASE #CISOStrategy

52

Research shows that offensive security practices like red teaming and pen testing reduce the frequency and cost of security incidents. Unfortunately, not everyone understands this, so CISOs and SecOps leaders must work to get executive buy-in. Our new guide helps you build a practical business case, overcome objections, and outline an investment roadmap for offensive security. Read the CISO's Guide to Justifying Offensive Security Investments: https://ow.ly/e2n650WVuW8 #OffSec #CISO #Cybersecurity

23

🚨 Still fighting alert fatigue? It’s time to move beyond reactive security. Security teams today aren’t short on alerts, they’re short on time, clarity, and actionable intelligence. Manual triage and tool sprawl slow SOCs down when speed matters most. This blog explores how next-gen SOC automation enables a shift from alert overload to AI-driven, autonomous defense, helping teams detect, prioritize, and respond to threats in real time. 🔹 Reduce alert fatigue 🔹 Automate investigation and response 🔹 Accelerate threat containment 🔹 Empower SOC teams to focus on what matters most 👉 Read the full blog here: https://lnkd.in/gHfJEByE #CyberSecurity #SOCAutomation #SOC #AIinSecurity #AutonomousDefense #SecOps #ThreatDetection Chandra Shekhar Pandey Tom Ertel Shikha Pandey Manish Karanji Ed Mohr William F. Vinay Ojha Sana Anjali Devi Bhabani Prasad Mahapatra Aishwarya Pratap Singh Yashesh Vaishnav Nilesh Mojidra Khaled Al-Najjar-MBA-CISM

30

1 Comment

AI is creating a new security frontier. A10 Networks’ Diptanshu Purwar explains why built-in LLM guardrails aren’t enough, and how an AI firewall can detect and block threats like prompt injection and data exfiltration. Learn about the three challenges security teams will face when AI becomes more deeply embedded in enterprise and service provider operations. https://bit.ly/45I530t

20

I just added support for AWS IAM Outbound Identity Federation to the Nymeria cross-cloud identity repository. Previously, AWS workloads required the target service to accept pre-signed Signature Version 4 headers for identity verification. This approach was not supported by Azure identity federation, so accessing Azure resources required an additional OIDC identity provider (for example, AWS EKS or Amazon Cognito) to issue tokens to AWS workloads. Now, with IAM Outbound Identity Federation, AWS workloads can request signed OIDC identity tokens (JWTs) using the sts:GetWebIdentityToken API. These identity tokens enable OIDC federation into external cloud services. This blog post demonstrates how to use AWS IAM Outbound Identity Federation to access data hosted in Azure Storage: https://lnkd.in/gcatS7FU GitHub repository: https://lnkd.in/gZHJg8cj

50