Oren Koren

Exposures are setting the tempo in the realm of cybersecurity. With a majority of breaches (83%) involving external actors, according to last year’s Verizon’s Data Breach Investigations report, organizations are shifting their priorities from not just vulnerabilities and security gaps, but emphasizing a focus on understanding and remediating exposures. Like any leader, how does one stay ahead of the curve, or in this case, on pace with exposures and protecting the company’s assets?

Security operations centers (SOCs) play a critical role in cybersecurity, proactively detecting and responding to attacks in real time while reinforcing the business’ security posture. Though they make the job look easy, SOCs are overloaded with data, especially as artificial intelligence (AI) becomes widely adapted – almost 25% of C-suite executives directly use generative AI tools for work. To keep these security hubs operating efficiently, they also demand an extensive commitment of… רוצה לראות יותר

Security operations centers (SOCs) play a critical role in cybersecurity, proactively detecting and responding to attacks in real time while reinforcing the business’ security posture. Though they make the job look easy, SOCs are overloaded with data, especially as artificial intelligence (AI) becomes widely adapted – almost 25% of C-suite executives directly use generative AI tools for work. To keep these security hubs operating efficiently, they also demand an extensive commitment of man-hours and a substantial annual budget. So, how do SOC analysts overcome these challenges? By tackling false positives at their source רוצה לראות פחות

In the current landscape of frequent mergers and acquisitions, organizations face the daunting task of harmonizing cybersecurity measures across their subsidiaries. This presents a threat to the parent organization's overall security, as the top-tier security team may lack access and knowledge about the subsidiaries' cybersecurity infrastructure. Nonetheless, the time it would take the security team to analyze and process each solution would take valuable resources away from other business… רוצה לראות יותר

In the current landscape of frequent mergers and acquisitions, organizations face the daunting task of harmonizing cybersecurity measures across their subsidiaries. This presents a threat to the parent organization's overall security, as the top-tier security team may lack access and knowledge about the subsidiaries' cybersecurity infrastructure. Nonetheless, the time it would take the security team to analyze and process each solution would take valuable resources away from other business priorities. רוצה לראות פחות

Besides choosing between best-of-breed or “single pane of glass” (that is, a platform delivered by one vendor that covers all layers of protection) solutions, one of the top things organizations need to understand is the potential business impact the product or platform will create. It’s not just about security—it’s also about business uptime and minimizing the impact on business continuity the product will cause (and it will).

As we advance into 2024, the cybersecurity landscape is contending with a unique and challenging confluence of forces. On one side, we are witnessing a relentless surge in cyber threats, particularly in the form of sophisticated ransomware attacks. On the other, an economic environment marked by rising interest rates is exerting unprecedented pressure on corporate budgets, especially in the cybersecurity domain. This combination of a heightened threat landscape and financial stringency is… רוצה לראות יותר

As we advance into 2024, the cybersecurity landscape is contending with a unique and challenging confluence of forces. On one side, we are witnessing a relentless surge in cyber threats, particularly in the form of sophisticated ransomware attacks. On the other, an economic environment marked by rising interest rates is exerting unprecedented pressure on corporate budgets, especially in the cybersecurity domain. This combination of a heightened threat landscape and financial stringency is compelling organizations to rethink their cybersecurity strategies fundamentally. רוצה לראות פחות

At a recent panel discussion with esteemed colleagues and friends, a pivotal question arose from the audience, sparking a thought-provoking debate on cybersecurity strategy: "Is it better to opt for a 'best-of-breed' or a 'single pane of glass' approach in cybersecurity?"

Recently, I engaged in a fascinating dialogue with several C-level executives, exploring a nuanced predicament. How does one navigate the potential conflict of interest when you're on an advisory board of a company and simultaneously considering becoming its customer—or perhaps you've decided not to?

There’s an overarching misconception among many organizations that if they are currently investing in a plethora of security tools, their enterprise environment is protected. Unfortunately, it’s not always that simple.

Your handy adblocker, price tracker, or spell checker extension might be significantly risking your online safety. Oren Koren, Co-Founder of the cybersecurity firm Veriti, advised me to delete all Chrome extensions, and he’s not the only one. Four more cybersecurity researchers have similar opinions.

Threads already has more than 100 million downloads, since Meta launched the app as a rival to Twitter earlier this month. But crooks are also seeking to cash in by mimicking the new social media app, with over 700 phony domain names emerging in a single day.

Biopharma Confronts a Rising Tide of Ransomware Attacks

Retired hardware and forgotten cloud virtual machines are a trove of insecure confidential data. Here's how to ameliorate that weakness.

With attackers creating domains that closely resemble the name of the targeted organization, it is no surprise that SVB is at the center of an emerging phishing campaign. These domains may contain minor variations and often include references to financial terms, such as payments or financial aid, to trick individuals into clicking on malicious links.

SVB Bank's collapse has opened the door for hackers to launch phishing attacks targeting unsuspecting victims.

In this article we shed light on how these attacks are being carried out and how legitimate organizations are unwittingly aiding the attackers. Read the full interview to learn how you can better defend your organization against these insidious attacks.

in today world of emerging threat, MITRE ATT&CK allows us to understand better the attacker intent and take actions upon the threats that has been detected.



the MITRE ATT&CK extension to SmartConsole (R80.30 version and above) expose the attackers intent by analyzing automatically your logs and use them to expose your own ATT&CK landscape and the Mitigations you need to take.

Cloud solutions are proliferating rapidly. Sometimes it seems like the pace is too fast, and is coming at the expense of security considerations. Sensitive information stored on the cloud is naturally going to draw the attention of threat actors and therefore we must be prepared and of course, we must be protected.

A cloud application is the on-demand delivery of system resources over the internet, for example: data storage, databases, servers and more. Cloud computing is widespread due… רוצה לראות יותר

Cloud solutions are proliferating rapidly. Sometimes it seems like the pace is too fast, and is coming at the expense of security considerations. Sensitive information stored on the cloud is naturally going to draw the attention of threat actors and therefore we must be prepared and of course, we must be protected.

A cloud application is the on-demand delivery of system resources over the internet, for example: data storage, databases, servers and more. Cloud computing is widespread due to its efficiency, reduced costs, increased productivity and many more benefits. Popular applications like Salesforce, Box and Office365 are cloud-based and commonly used.

In this blog, we demonstrate the use of Check Point Application Control to prevent risks across your network and in the cloud. רוצה לראות פחות

After an extensive work of @IbrahimShibli in Application Control (Kudus also to @Adi_Ikan) we are proud to expose our new SCADA dashboard. it contain the ability to review and analyze your SCADA traffic and in some cases, up to the specific action taken by the device.

On March 2nd , 2021, Volexity reported the in-the-wild exploitation of the following Microsoft Exchange Server vulnerabilities: CVE-2021-26855, CVE-2021-26857, CVE-2021-26858 and CVE-2021-27065.

Further investigation uncovered that an attacker was exploiting a zero-day and used in the wild. The attacker was using the vulnerability to steal full contents of several user mailboxes. This vulnerability is remotely exploitable and does not require authentication or special knowledge or access… רוצה לראות יותר

On March 2nd , 2021, Volexity reported the in-the-wild exploitation of the following Microsoft Exchange Server vulnerabilities: CVE-2021-26855, CVE-2021-26857, CVE-2021-26858 and CVE-2021-27065.

Further investigation uncovered that an attacker was exploiting a zero-day and used in the wild. The attacker was using the vulnerability to steal full contents of several user mailboxes. This vulnerability is remotely exploitable and does not require authentication or special knowledge or access to a specific environment. רוצה לראות פחות

Recently, Check Point Research encountered several attacks that exploited multiple vulnerabilities, including some that were only recently published, to inject OS commands. The goal behind the attacks was to create an IRC botnet, which can later be used for several purposes, such as DDoS attacks or crypto-mining.

This SmartView report will show if you have been attacked with the relevant vulnerabilities and indicators related to this attack.

In December 2020, a large-scale cyberattack targeting many organizations – predominantly tech companies, mainly in the United States, but not only there – was discovered to have been going on for several months. The attack was of a degree of sophistication that led to a quick consensus of involvement by a foreign government, and was extraordinary in both the amount of care taken in crafting it and the exotic vector of entry; instead of the usual phishing or even exploitation, the attackers… רוצה לראות יותר

In December 2020, a large-scale cyberattack targeting many organizations – predominantly tech companies, mainly in the United States, but not only there – was discovered to have been going on for several months. The attack was of a degree of sophistication that led to a quick consensus of involvement by a foreign government, and was extraordinary in both the amount of care taken in crafting it and the exotic vector of entry; instead of the usual phishing or even exploitation, the attackers carried out an elaborate supply chain attack.

in this report you will be able to see results related to the attack if you have been affected. רוצה לראות פחות

IP cameras, a type of digital video camera that receives control data and sends image data via an IP network, are commonly used for surveillance. As a result, they are an essential part of our ability to monitor and secure our properties, whether those are commercial buildings, public areas, or private homes. In the last couple of years, there has been a significant increase in the use of these products, which can be seen as part of the larger trend of Smart Homes. Based on forecasts, this… רוצה לראות יותר

IP cameras, a type of digital video camera that receives control data and sends image data via an IP network, are commonly used for surveillance. As a result, they are an essential part of our ability to monitor and secure our properties, whether those are commercial buildings, public areas, or private homes. In the last couple of years, there has been a significant increase in the use of these products, which can be seen as part of the larger trend of Smart Homes. Based on forecasts, this trend is expected to continue in the coming years. With the growing existence of these devices in our networks, it is increasingly important to monitor the associated network traffic. In this blog, we share how to leverage the unique capabilities of Check Point Application Control (APCL) to provide better visibility and security for your IP cameras. Application Control is one component of the broader Check Point IoT Protect solution for discovering and securing all your enterprise, medical and industrial IoT devices. Check out IoT Protect for more information. רוצה לראות פחות

A major result of the current COVID-19 pandemic is the significant increase in the use of video conferencing applications. Applications like Zoom, BlueJeans, and Microsoft Teams have become critical to our ability to communicate effectively, both for work continuity, and for keeping up with friends and family in these days of social distancing and sheltering in place

In Application Control, the video conference apps detection is focused on 4 major components: Basic Discovery (App… רוצה לראות יותר

A major result of the current COVID-19 pandemic is the significant increase in the use of video conferencing applications. Applications like Zoom, BlueJeans, and Microsoft Teams have become critical to our ability to communicate effectively, both for work continuity, and for keeping up with friends and family in these days of social distancing and sheltering in place

In Application Control, the video conference apps detection is focused on 4 major components: Basic Discovery (App Identification & Monitoring), File Transfer (Uploads & Downloads), Remote Control and Desktop Sharing. In this blog, we demonstrate how to leverage these for network traffic visibility, and preventing attacks and data exfiltration. רוצה לראות פחות

Analyzing system logs and efficiently identifying top threats to investigate and remediate is a security analyst’s biggest challenges. Most organizations receive malicious files every day. Without advanced protection technology and analytics, the malware will likely breach the organization’s systems and spread through the corporate networks.

The long night has finally ended. Game of Thrones fans can finally come in from the cold and, like a starving dragon, start devouring the latest and final season of the massively popular TV show. But unlike the fantasy series, what is far more real is the plethora of phishing scams facing enthusiasts.