FORTBRIDGE

We had an incredible experience at BSides Dresden 2024! 🎉 It was fantastic meeting so many passionate and talented individuals in the cybersecurity community. The feedback we received on our research and work has been truly inspiring, and we’re grateful for the opportunity to connect with such amazing minds. A huge thank you to the organizers from SAP, Evgeni Sabev, PhD and Norman Nürnberger, and the entire BSides Dresden team for putting together such a fantastic event. Your dedication to fostering collaboration and innovation in cybersecurity is truly commendable! As we look ahead, the future of cybersecurity depends on continued collaboration, innovation, and knowledge sharing. Together, we can create a safer digital world. 🌐 It was also great meeting so many cool new people! In no particular order, it was a pleasure chatting with Jonas Schneidewind, Juan Zapata, Hristiyan Lazarov, Sandra Erceg, Alexander Georgiev, Waseem Ajrab, Andreas Rogge, Hasan Güney Esendemir, Paul Zenker, Jim Nemetz, Sothyro Meas and Stefan from SAP . The names are in no particular order, and apologies if we forgot anyone—you’ve all made this experience unforgettable! #BSidesDresden #Cybersecurity #Collaboration #Innovation

Recent alerts from the U.S. Cybersecurity and Infrastructure Security Agency (CISA) and the FBI highlight several pressing security concerns, including exploited software vulnerabilities and evolving malware campaigns. Swipe left ➡ to explore the details of these vulnerabilities and malware campaigns, who was impacted, mitigation strategies, and essential tips for preventing similar cyber attacks. 🔍 Concerned about your Company's Security? Ask FORTBRIDGE ! Our senior consultants, backed by a proven track record and experience with industry giants, can identify vulnerabilities in your systems before hackers strike. Contact FORTBRIDGE today and fortify your Security. ➡ fortbridge.co.uk/contact/ Your digital resilience starts here! #cybersecurity #cyberattack #malware #cybersecurityawareness

In today’s fast-evolving digital landscape, traditional security measures are no longer enough. Enter 𝗧𝗵𝗿𝗲𝗮𝘁-𝗟𝗲𝗱 𝗣𝗲𝗻𝗲𝘁𝗿𝗮𝘁𝗶𝗼𝗻 𝗧𝗲𝘀𝘁𝗶𝗻𝗴 (𝗧𝗟𝗣𝗧)—an advanced, intelligence-driven approach that simulates real-world cyberattacks to test and strengthen your organization's resilience. Our latest blog post, "𝗧𝗵𝗲 𝗨𝗹𝘁𝗶𝗺𝗮𝘁𝗲 𝗚𝘂𝗶𝗱𝗲 𝘁𝗼 𝗧𝗵𝗿𝗲𝗮𝘁-𝗟𝗲𝗱 𝗣𝗲𝗻𝗲𝘁𝗿𝗮𝘁𝗶𝗼𝗻 𝗧𝗲𝘀𝘁𝗶𝗻𝗴 (𝗧𝗟𝗣𝗧)", dives deep into: 🔹 What TLPT is and why it’s a game-changer 🔹 The step-by-step methodology behind TLPT 🔹 Industry applications in finance, healthcare, and critical infrastructure 🔹 Tools, frameworks, and best practices for effective TLPT 🔹 Future trends to watch as cyber threats evolve Whether you're in cybersecurity, leadership, or IT operations, this guide provides everything you need to understand and implement TLPT. 🔗 Ready to fortify your defenses? Read the full blog here: https://lnkd.in/eyhdqEyR Let us know your thoughts! How is your organization preparing for sophisticated cyber threats? 💬

We're excited to share the incredible insights from our Co-Founder and Principal Pentester, Adrian Tiron, at BSides Dresden 2024 hosted by SAP! In this presentation, Adrian dives into a critical admin takeover exploit in Vesta CP caused by reduced seed entropy in the Bash $RANDOM variable. Learn how we turned a theoretical vulnerability into a practical exploit, reducing the brute force domain by over 98%, enabling attackers to predict random values and compromise passwords and tokens. Adrian also shares best practices for enhancing server security in real-world applications. 🎥 Watch on YouTube: https://lnkd.in/eTiP3k_y 📂 Interested in our technical talks at BSides Dresden? Explore our research slides here: https://lnkd.in/emxVYjRR A huge thank you to SAP for hosting this event, Evgeni Sabev, PhD, Norman Nürnberger, and all others involved in organizing this magnificent event! And a special thanks to @Stefan Hesse for the warm introduction. Stay tuned for more research and insights from the team at FORTBRIDGE! #Cybersecurity #BSidesDresden #LinuxSecurity #ServerSecurity #Research

We're thrilled to share the incredible presentation by our very own, Bogdan Tiron, at BSides Dresden 2024 hosted by SAP. In this session, Bogdan dives deep into his groundbreaking research uncovering critical vulnerabilities in the Feeld dating app, which exposed sensitive user data. From unauthorized access to private messages and photos to manipulation of profiles and messages, Bogdan explains how these flaws were identified and addressed, ensuring better security for users. This presentation, which received outstanding feedback, highlights the importance of robust access control in GraphQL APIs. 🎥 Watch the full presentation on YouTube: https://lnkd.in/e8D3FFc8 📂 Interested in our technical talks at BSides Dresden? Explore our research slides here: https://lnkd.in/e5kmbe6v Thank you to SAP for hosting this event, Evgeni Sabev, PhD, Norman Nürnberger, and all others involved in organizing this magnificent event! Thank you ILLia K. for the video recording as well! Stay tuned for more insights and updates from our team at FORTBRIDGE! #Cybersecurity #BSidesDresden #GraphQL #AppSec #Research

Our founders, Adrian Tiron and Bogdan Tiron, will be speaking at BSides Dresden 2024 on December 7th about cybersecurity, their groundbreaking research, and the impactful work we're doing at FORTBRIDGE. If you’re attending, we’d love to meet you! Let’s chat about pen testing, red teaming, and all things security. 🚀 Come say hi and join the conversation! 👋 #BSidesDresden #Cybersecurity #PenTesting #RedTeaming

Empowering Future AppSec Professionals 🎁 𝗘𝗻𝗱-𝗼𝗳-𝗬𝗲𝗮𝗿 𝗚𝗶𝘃𝗲𝗮𝘄𝗮𝘆: Win a Burp Suite Certification Voucher! As we wrap up an exciting year at FORTBRIDGE, we're dedicated to empowering the next generation of cybersecurity professionals. To support your journey in application security, we're giving away three Burp Suite Certification Exam vouchers. 𝗛𝗼𝘄 𝘁𝗼 𝗘𝗻𝘁𝗲𝗿: 1️⃣ Follow FORTBRIDGE on LinkedIn. 2️⃣ Like ❤ and Share 🔄 our giveaway post. ⏳ Hurry! The giveaway ends on 𝗝𝗮𝗻𝘂𝗮𝗿𝘆 𝟱𝘁𝗵, and we'll announce the lucky randomly selected winners on January 6th. 𝗡𝗼𝘁𝗲: Access to Burp Suite Professional might be required to complete the exam.

Veeam has addressed two significant vulnerabilities in its Service Provider Console (VSPC), one of which carries a critical CVSS score of 9.9/10. These flaws could allow attackers to execute malicious code remotely or steal sensitive credentials, potentially leading to severe disruptions and data breaches. Swipe left ➡ to explore the details of the vulnerabilities, who was impacted, mitigation strategies, and essential tips for preventing similar cyber attacks. 🔍 Concerned about your Company's Security? Ask FORTBRIDGE ! Our senior consultants, backed by a proven track record and experience with industry giants, can identify vulnerabilities in your systems before hackers strike. Contact FORTBRIDGE today and fortify your Security. ➡ fortbridge.co.uk/contact/ Your digital resilience starts here! #cybersecurity #cve #cyberattack #cybersecurityawareness

Microsoft recently addressed four significant security vulnerabilities affecting its AI, cloud, enterprise resource planning (ERP), and Partner Center services. These flaws pose serious risks, including unauthorized access, privilege escalation, and phishing attacks. Swipe left ➡ to explore the details of the vulnerabilities, who was impacted, mitigation strategies, and essential tips for preventing similar cyber attacks. 🔍 Concerned about your Company's Security? Ask FORTBRIDGE ! Our senior consultants, backed by a proven track record and experience with industry giants, can identify vulnerabilities in your systems before hackers strike. Contact FORTBRIDGE today and fortify your Security. ➡ fortbridge.co.uk/contact/ Your digital resilience starts here! #cybersecurity #microsoft #azure #cyberattack #cybersecurityawareness

Cyber Monday savings are here early! 🛡 Enjoy 15% off all FORTBRIDGE cybersecurity services. Whether you need penetration testing, vulnerability assessments, or tailored security solutions, now is the time to enhance your defenses and stay ahead of cyber threats. 📩 Contact us today to secure your discount! ➡ fortbridge.co.uk/contact/ #cybermonday #cybersecurity #pentesting #tech #cloudsecurity