The hottest Cybersecurity Substack posts right now

And their main takeaways
Category
Top Technology Topics

CyberKunlun raised nearly 100 million yuan in Series A financing

CyberSecurityMew 0 implied HN points 03 Jul 23
🕹 Technology Cybersecurity
  1. CyberKunlun raised nearly 100 million yuan in Series A financing led by Fortune Capital with participation from Sequoia China and Navigation Capital
  2. Founded by white-hat hacker Zheng Wenbin, CyberKunlun focuses on vulnerability protection and defense products recognized by national-level customers
  3. Investors value CyberKunlun's comprehensive defense product system for vulnerability protection, recognizing the urgent demand for cybersecurity solutions in a market exceeding 10 billion yuan

"Chiansec" announced the completion of a new round of financing worth tens of millions of RMB

CyberSecurityMew 0 implied HN points 30 Jun 23
🕹 Technology Cybersecurity
  1. On June 30, 2023, cybersecurity company "Chiansec" completed a significant round of financing with key investors, including Eight Roads Capital and Red Point Ventures.
  2. Chiansec specializes in zero-trust security, focusing on a platform architecture integrated with microservices that emphasize identity and control.
  3. Investors recognize the growth potential in Chiansec's innovative zero-trust security solutions, seeing its applicability in addressing vulnerabilities in traditional network security for enterprises.

The Thriving of China's Cybersecurity Tech Market

CyberSecurityMew 0 implied HN points 26 Jun 23
🕹 Technology Cybersecurity
  1. A summit highlighted the thriving cybersecurity tech market in China, showcasing the importance of this industry in the country's digital transformation.
  2. Jon Xu, a founding partner of Nova Cyber Venture, emphasized the growth and opportunities present in China's cybersecurity technology market from a VC's perspective.
  3. It's essential to follow developments in the cybersecurity sector in China, as it plays a significant role in the country's technological advancement.

PCSA Releases Framework for Data Protection and Flow Security Regulation

CyberSecurityMew 0 implied HN points 18 Jun 23
🕹 Technology Cybersecurity
  1. The PCSA released a comprehensive framework for data protection and flow security regulation after years of collaboration and refinement with industry experts.
  2. This framework was developed under the guidance of the Information Security Professional Committee of the China Information Association and other stakeholders.
  3. The framework proposes regulations based on best practices in data security governance from various industries during the 13th Five-Year Plan and beyond.

Sectrend Completes Tens of Millions in Pre-A+ Funding

CyberSecurityMew 0 implied HN points 13 Jun 23
💼 Business Cybersecurity
  1. Sectrend completed a large Pre-A+ funding round, raising tens of millions of yuan to enhance their software supply chain security products.
  2. Their products address Software Composition Analysis (SCA) needs and Static Application Security Testing (SAST), catering to enterprise clients' security and compliance requirements.
  3. Sectrend's growth in commercialization is significant, with clients like Tencent, Alibaba, and Baidu using their services, and the company plans to further improve products and expand their customer base.
Get a weekly roundup of the best Substack posts, by hacker news affinity:

FengtaiSec Completes 120 Million Yuan B+ Round Financing

CyberSecurityMew 0 implied HN points 06 Jun 23
🕹 Technology Cybersecurity
  1. FengtaiSec completed a 120 million yuan B+ round financing on June 6, 2023, mainly for strategic layout and technological innovation.
  2. The industrial network security industry in China is advancing rapidly due to innovation and extensive applications in various sectors.
  3. Investors in FengtaiSec highlighted the company's innovation in the industrial security sector and its potential in safeguarding digitalization in industrial settings.

China Securities Regulatory Commission Approves WebRay IPO!

CyberSecurityMew 0 implied HN points 01 Jun 23
💼 Business Cybersecurity
  1. China Securities Regulatory Commission approved WebRay's IPO, focusing on cybersecurity technology and services.
  2. WebRay emphasizes 'Security First, Governance Foremost,' offering a range of cybersecurity products and services to users.
  3. The company emphasizes precision identification, accurate defense, and deep business integration to support national cyberspace security strategy implementation.

Antira Tech announced a multi-million CNY A++ round from Yuan Partners Capital.

CyberSecurityMew 0 implied HN points 01 Jun 23
💼 Business Cybersecurity
  1. On June 1, 2023, Antira Tech secured a multi-million CNY A++ round funded by Yuan Partners Capital, focusing on expanding resources and channel systems.
  2. Antira Tech evolved its focus from attack surface management to risk management, providing lightweight security solutions for government and enterprise clients.
  3. Yuan Partners Capital's Founding Partner emphasized the importance of measurable risks, converting attack and defense, continuous operations, and closed-loop feedback in cybersecurity, recognizing Antira Tech's product excellence and team execution capabilities.

Huidusec Raised a Pre-A Round of Tens of Millions CNY

CyberSecurityMew 0 implied HN points 31 May 23
💼 Business Cybersecurity
  1. Huidusec completed a significant Pre-A financing round with investors DBAppsecurity, aiming to enhance product development, research, and market expansion.
  2. Huidusec prioritizes technological innovation in security, offering the Prophet Intelligent Risk Assessment System to bolster enterprises' proactive defense capabilities.
  3. CEO Linda Cao envisions Huidusec deepening its presence in security operations, focusing on innovative multi-dimensional security products, services, and solutions.

Sec-UN Releases "Greater Bay Area Financial Security Journal”Volume 1

CyberSecurityMew 0 implied HN points 30 May 23
🕹 Technology Cybersecurity
  1. The Greater Bay Area in China's Pearl River Delta is a key hub for financial innovation and digital economic growth.
  2. Financial institutions are facing increasing cybersecurity challenges due to the growth of financial technology, requiring a focus on security during digital transformation.
  3. The 'Greater Bay Area Financial Security Journal' offers insights from cybersecurity practitioners to enhance protection and drive sustainable financial innovation in the industry.

China Cyber Security Start-ups and Angel Investment Status Report(2020-2022)

CyberSecurityMew 0 implied HN points 29 May 23
💼 Business Cybersecurity
  1. 91 cybersecurity start-ups completed their first round of financing in the past 3 years, taking an average of 22 months
  2. About 16% of companies completed their first financing within 60 days, while more than 21% took about 3 years or more
  3. Z-ONE Consulting is specialized in cyber security business research and acceleration in China, offering various services for cyber security start-ups

China Releases "Digital China Development Report (2022)” , Cybersecurity Industry Scale Reaching CNY 217 Billion, a YoY Growth of 13.9%

CyberSecurityMew 0 implied HN points 24 May 23
🕹 Technology Cybersecurity
  1. China released the 'Digital China Development Report (2022)' highlighting the importance of digital security in advancing the construction of Digital China.
  2. In 2022, China's cybersecurity industry experienced significant growth, reaching nearly CNY 217 billion with a year-on-year growth of 13.9%.
  3. The cybersecurity sector in China saw expansion with over 3,000 enterprises involved, and a growing talent pool with over 500 educational institutions offering related majors.

Seclead Completes New Round of Over 100 Million Yuan Series B Financing

CyberSecurityMew 0 implied HN points 23 May 23
💼 Business Cybersecurity
  1. Seclead completed a new round of over 100 million yuan Series B financing on May 23, 2023, led by Beijing Firstred M&A Capital.
  2. The funds raised will be used for research and development in digital security products, modeling, platforms, supply chain upgrades, operations, and market expansion.
  3. Seclead aims to offer comprehensive digital security solutions for China's digital transformation, strengthening its foundation.

Integrity Tech become the largest external shareholder of Wing Shield Intelligence

CyberSecurityMew 0 implied HN points 16 May 23
🕹 Technology Cybersecurity
  1. Integrity Tech has acquired a stake in Wing Shield Intelligence, becoming its largest external shareholder. They aim to collaborate on secure application of new technologies like IoT and AI in the digital economy.
  2. Wing Shield Intelligence specializes in secure AI products and solutions, focusing on areas like smart cities, energy, and manufacturing. Their technologies include chip fingerprints for identity security and intelligent interconnection systems.
  3. Integritytech, a prominent network testing enterprise in China, is joining forces with Wing Shield Intelligence to enhance IoT and AI security measures. This partnership will boost technological advancements and market growth for Wing Shield Intelligence.

BaseBit.ai Completes B++ Round Financing

CyberSecurityMew 0 implied HN points 26 Apr 23
💼 Business Cybersecurity
  1. BaseBit.ai completed a B++ round financing of hundreds of millions of yuan to develop products for the Internet of Data and Computing (IoDC).
  2. A group operation mode will be implemented to integrate regional forces and accelerate the construction of an IoDC network.
  3. The CEO expressed gratitude for the support, indicating optimism from the capital market towards data-driven solutions.

Venustech Releases Q1 2023 Report

CyberSecurityMew 0 implied HN points 26 Apr 23
💼 Business Cybersecurity
  1. Venustech reported a significant revenue increase in Q1 2023, with operating revenue reaching CNY 788 million, up 39.56% YoY.
  2. The company invested in R&D, with expenses increasing by 5.43% YoY, while sales and management expenses decreased, leading to a lower overall expense total.
  3. Venustech focused on strategic collaborations, technology innovation, cost reduction, and market optimization during the reporting period.

China Releases "Global Advanced Persistent Threat (APT) Research Report"

CyberSecurityMew 0 implied HN points 25 Apr 23
🕹 Technology Cybersecurity
  1. China released the 'Global Advanced Persistent Threat (APT) Research Report' in April 2023, focusing on global APT activities in 2022 and APT attacks faced by China, providing insights on real threats and trends.
  2. Globally, APT attack activities surged in 2022, showing widespread deployment, resonating with geopolitical events, with APT attacks becoming militarized due to conflicts.
  3. APT actors constantly innovate in attack processes and disguise techniques, with emerging organizations posing significant threats, using new technology, and increasing politicization of APT incidents.

China Releases the "2022 Report on Indigenous Innovation in Cyberspace"

CyberSecurityMew 0 implied HN points 21 Apr 23
🕹 Technology Cybersecurity
  1. The 2022 Report on Indigenous Innovation in Cyberspace focuses on deepening indigenous innovation in different areas of technology in China
  2. The report involves the contribution of numerous internet enterprises and experts in the industry to compile detailed data and insights over the span of several years
  3. It provides a comprehensive analysis on various industrial nodes like chips, operating systems, and data security, discussing current challenges, reasons behind them, and proposed solutions for further indigenous innovation

Antira Technology Raised a A+ Round | China Cybersecurity

CyberSecurityMew 0 implied HN points 18 Apr 23
🕹 Technology Cybersecurity
  1. Antira Technology raised a A+ round of funding from Everest.VC and Glory Ventures, indicating confidence in the company and its growth potential.
  2. The company, founded in 2011 in Beijing, focuses on providing professional security services with offensive and defensive capabilities in the evolving information security landscape.
  3. Antira Technology's innovative approach to security, beyond 'attack surface management,' includes a new concept of being 'a risk manager in the digital world' based on measuring changes in defense targets.

China Issues Announcement on Adjusting Relevant Matters of Security Dedicated Product Safety Management

CyberSecurityMew 0 implied HN points 18 Apr 23
🕹 Technology Cybersecurity
  1. China issued an announcement on adjusting security dedicated product safety management on April 17, 2023, in collaboration with various ministries to strengthen the safety protocols for security products.
  2. Key adjustments include the requirement for security dedicated products to be certified safe according to national standards before being sold starting from July 1, 2023.
  3. The discontinuation of the 'Sales License for Computer Information System Security Dedicated Products' and removal of the 'Announcement on Adjusting the Implementation Requirements for Mandatory Certification of Information Security Products' are part of the adjustments.

Cyberspace Administration of China Releases Draft Regulations on Management of Generative AI Services (Soliciting Public Opinions)

CyberSecurityMew 0 implied HN points 12 Apr 23
🕹 Technology Cybersecurity
  1. The Cyberspace Administration of China has released draft regulations on the management of generative AI services, seeking public opinions.
  2. The regulations emphasize support for independent innovation, international cooperation, and the use of secure and trustworthy resources in the AI sector.
  3. Providers of generative AI products or services must adhere to legal requirements, respect societal values, prevent discrimination, ensure accuracy in generated content, and safeguard personal and intellectual property rights to avoid penalties.

"Historical Review of Cyber Attacks by US Intelligence Agencies" Report Released by CCIA

CyberSecurityMew 0 implied HN points 11 Apr 23
🌍 World Politics Cybersecurity
  1. CCIA released a report about historical cyber attacks by US intelligence agencies
  2. The report highlights US agencies' cyber attacks on critical infrastructure, network espionage, backdoor implantation, and more
  3. US intelligence agencies are implicated in hindering global tech development and creating division in cyberspace

TalentSec Raised a Pre-A Round|China Cybersecurity

CyberSecurityMew 0 implied HN points 02 Apr 23
🕹 Technology Cybersecurity
  1. TalentSec, a cybersecurity company in China, raised a Pre-A Round of financing from Shunwei Capital in 2023.
  2. TalentSec focuses on offering BAS, ASM, and Cyber Range solutions mainly to large and medium-sized enterprises in financial, government, and energy sectors.
  3. Shunwei Capital views the cybersecurity industry as having significant market potential in the next few years due to increasing cyber threats domestically and globally.

Coming soon

CyberSecurityMew 0 implied HN points 06 Mar 23
🕹 Technology Cybersecurity
  1. CyberSecurityMew is a platform that will be launching soon focused on cybersecurity.
  2. The CyberSecurityMew content can be shared through various methods like copy link, Facebook, and email.
  3. To engage with CyberSecurityMew, individuals can subscribe to stay updated with the latest posts.

Beyond the Patch: AMTD - Your Shield Against Zero-Day Container Attacks

Phoenix Substack 0 implied HN points 05 Mar 24
🕹 Technology Cybersecurity
  1. Automated Moving Target Defense (AMTD) introduces dynamic configurations and variability to go beyond just patching vulnerabilities, making it significantly more challenging for attackers to exploit container-based systems.
  2. AMTD offers a proactive defense strategy that anticipates and thwarts potential threats by constantly evolving container configurations, confounding adversaries and rendering automated scanning tools ineffective.
  3. Incorporating machine learning algorithms supercharges AMTD's ability to adapt and optimize defensive strategies efficiently, enabling autonomous responses to detected threats and reducing the burden on security teams.

Unsecure Employee Behavior

Rod’s Blog 0 implied HN points 04 Mar 24
🕹 Technology Cybersecurity
  1. Unsecure employee behavior, like clicking on phishing emails and using weak passwords, poses a significant threat to an organization's data security.
  2. To address these risks, companies should focus on educating employees, implementing strict security protocols, and fostering a culture of security awareness and responsibility.
  3. Common unsecure behaviors include sharing passwords, using unsecured Wi-Fi networks, and failing to update software, all of which can lead to data breaches and cyberattacks.

The KQL Mysteries: Chapter 11

Rod’s Blog 0 implied HN points 01 Mar 24
🕹 Technology Cybersecurity
  1. Jon and Jordan faced a tense situation with the Night Princess's presence in their city, leading to a dramatic confrontation at a server farm.
  2. They used KQL commands to uncover the Night Princess's infiltration and implemented a countermeasure to isolate her.
  3. The unexpected reveal of their colleague Sarah as the Night Princess left them with a difficult choice of trusting her to strengthen security or exposing her and risking vulnerabilities.

The KQL Mysteries: Chapter 10

Rod’s Blog 0 implied HN points 23 Feb 24
🕹 Technology Cybersecurity
  1. The protagonists employ a decoy operation using a shadow network to outsmart the antagonist, The Night Princess, in their digital battle.
  2. The effective strategy involves creating a convincing trap of valuable data on the shadow network to lure and track the intruder's movements.
  3. The story highlights the suspenseful process of tracing the intruder through a complex web of proxies, ultimately revealing their unexpectedly local location.

The KQL Mysteries: Chapter 9

Rod’s Blog 0 implied HN points 15 Feb 24
🕹 Technology Cybersecurity
  1. The characters are facing a cybersecurity threat from a mysterious entity known as The Night Princess, who may be linked to a previous attacker named `Krampus_attack`.
  2. Setting traps and monitoring activity are key tactics in cybersecurity investigations to identify and catch potential threats.
  3. In the face of adversity, it is crucial to adapt strategies, stay vigilant, and think like the adversary to outsmart them.

Brief: Copilot for Security as a Tool for Threat Hunting

Rod’s Blog 0 implied HN points 14 Feb 24
🕹 Technology Cybersecurity
  1. Threat hunting is a proactive cybersecurity practice that aims to uncover hidden threats in a network or system.
  2. Benefits of threat hunting include reducing attacker dwell time, preventing damage post-breach, and improving security team capabilities.
  3. Using Copilot for Security as a tool for threat hunting can enhance data sources, address management resistance, and empower security teams with AI and automation.

How to Generate Microsoft Sentinel Incidents for Testing and Demos

Rod’s Blog 0 implied HN points 23 Jan 23
🕹 Technology Cybersecurity
  1. Utilize the Microsoft Sentinel Training Lab to enable a demo environment with sample alerts for testing incidents.
  2. Leverage tools like Red Canary's Atomic Red Team and AppLocker Bypass for reproducible security tests mapped to the MITRE ATT&CK framework.
  3. Experiment with generating incidents through actions like cloud shell execution, simulating brute force attacks, utilizing Microsoft Cloud App Security, and creating custom detections in Defender for Endpoints.

How to Use a Playbook to Add Geographical Data for IP Addresses to a Microsoft Sentinel Incident

Rod’s Blog 0 implied HN points 09 Jan 23
🕹 Technology Cybersecurity
  1. A Playbook can be used to add geographical data for IP addresses to a Microsoft Sentinel Incident by querying IP-API.com and storing information in the Comments section.
  2. Storing more information in the Comments section instead of Tags provides flexibility and depth for investigations.
  3. Enhancing investigation context with detailed geographical data can help expedite the closing of Incidents.

New Sentinel Role: Playbook Operator

Rod’s Blog 0 implied HN points 09 Jan 23
🕹 Technology Cybersecurity
  1. A new role called Microsoft Sentinel Playbook Operator has been introduced, allowing analysts to run specific playbooks or a Resource Group of multiple playbooks.
  2. This role provides Run access to playbooks but does not allow editing them. It also facilitates the assignment of groups of playbooks to analysts through RBAC as part of Resource Groups.
  3. Customers have been requesting expanded roles like this for some time, so the introduction of the Playbook Operator role is a positive step forward.

Breaking Into Red Teaming (Overview)

Locks and Leaks 0 implied HN points 21 Nov 23
🕹 Technology Cybersecurity
  1. Physical red teaming is not a common standalone profession but rather a sub-role within cybersecurity or security consulting.
  2. There are various entry points to becoming a physical red teamer, including direct employment, part-time roles, and consulting firms.
  3. Networking, gaining experience, and tailoring your skills early on are essential to breaking into the field of physical red teaming.

Elliptic Curve Cryptography

Quantum Formalism 0 implied HN points 29 Nov 23
🕹 Technology Cybersecurity
  1. Elliptic Curve Cryptography (ECC) is crucial for secure internet communications like TLS protocols, mobile security, blockchain, and cryptocurrencies.
  2. ECC is efficient and widely utilized in mobile devices for securing transactions and communications due to lower computational power requirements.
  3. ECC plays a significant role in various sectors like government communications, wireless security protocols, and cloud computing due to its high security and efficiency.

Learning about Estonia's Digital Society

Joshua Gans' Newsletter 0 implied HN points 22 May 23
🕹 Technology Cybersecurity
  1. Estonia leads the world in having the most $1 billion-plus valued start-ups per capita, showcasing a thriving entrepreneurial ecosystem.
  2. Estonia has achieved an outstanding digital society, with a government that operates paperlessly and based on the principle of entering information only once, setting a new standard for efficiency and convenience.
  3. The success of Estonia's digital transformation was not immediately evident in the physical environment, highlighting the importance of deliberate legal and political decisions driving technological advancements.