#zerotrustarchitecture — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #zerotrustarchitecture, aggregated by home.social.

TechNadu @[email protected] · 2026-02-28 · 10:39 UTC

APT37’s Ruby Jumper campaign demonstrates a mature approach to air-gap traversal.
Observed tradecraft includes:
• LNK-based initial execution
• Embedded PowerShell payload extraction
• Ruby interpreter abuse (v3.3.0)
• Scheduled task persistence (5-minute interval)
• USB-based covert bidirectional C2
• Multi-stage backdoor deployment
Toolset: RESTLEAF, SNAKEDROPPER, THUMBSBD, VIRUSTASK, FOOTWINE, BLUELIGHT.
The removable media relay model enables:
– Command staging offline
– Data exfiltration without internet access
– Lateral spread across isolated systems
– Surveillance via Windows spyware
This reinforces a critical point:
Air-gap controls must extend beyond physical disconnection — including USB governance, device auditing, behavioral monitoring, and strict runtime execution policies.
Are critical infrastructure operators prepared for USB-mediated C2 relays?
Source: https://www.bleepingcomputer.com/news/security/apt37-hackers-use-new-malware-to-breach-air-gapped-networks/
Engage below.
Follow TechNadu for high-signal threat intelligence insights.
Repost to elevate awareness.
#Infosec #APT37 #AirGapSecurity #ThreatModeling #MalwareAnalysis #NationStateThreats #USBExfiltration #SOC #DetectionEngineering #CyberDefense #OperationalSecurity #ThreatHunting #ZeroTrustArchitecture

#infosec #apt37 #airgapsecurity #threatmodeling #malwareanalysis #nationstatethreats
Sanjay Mohindroo @[email protected] · 2025-12-17 · 04:12 UTC

Hidden network paths shape the cloud. Clarity brings control. Share your thoughts on how you face this drift. #ShadowNetworking #ZeroTrust #PlatformEngineering #CloudSecurity #Kubernetes #DevOps #CloudGovernance #ZeroTrustArchitecture #SiteReliability #DigitalTransformation #CloudStrategy #Security #DevSecOps #ModernIT
https://www.linkedin.com/pulse/hidden-pulse-cloud-how-manage-shadow-networking-sanjay-k-mohindroo--fdtbc

#shadownetworking #zerotrust #platformengineering #cloudsecurity #kubernetes #devops
Pyrzout :vm: @[email protected] · 2025-05-13 · 01:15 UTC

Zero Trust in the Age of Digital Transformation: The New Cybersecurity Paradigm https://hackread.com/zero-trust-digital-transformation-cybersecurity-paradigm/ #ZeroTrustArchitecture #Cybersecurity #Technology #Security #ZTA

#zerotrustarchitecture #cybersecurity #technology #security #zta
Pyrzout :vm: @[email protected] · 2025-05-12 · 13:55 UTC

Zero Trust in the Age of Digital Transformation: The New Cybersecurity Paradigm – Source:hackread.com https://ciso2ciso.com/zero-trust-in-the-age-of-digital-transformation-the-new-cybersecurity-paradigm-sourcehackread-com/ #1CyberSecurityNewsPost #ZeroTrustArchitecture #CyberSecurityNews #cybersecurity #Technology #Hackread #security #ZTA

#1cybersecuritynewspost #zerotrustarchitecture #cybersecuritynews #cybersecurity #technology #hackread
Pyrzout :vm: @[email protected] · 2025-01-02 · 11:10 UTC

Cybersecurity for Businesses in 2025: What to Expect https://thecyberexpress.com/cybersecurity-for-businesses/ #CybersecurityforBusinessesin2025 #CybersecurityTrends2025 #ZeroTrustArchitecture #TheCyberExpressNews #Supplychainattacks #AIinCybersecurity #BiometricSecurity #TheCyberExpress #FirewallDaily #Trends2025 #Features #Trends

#cybersecurityforbusinessesin2025 #cybersecuritytrends2025 #zerotrustarchitecture #thecyberexpressnews #supplychainattacks #aiincybersecurity
Anthony Kraudelt @[email protected] · 2024-03-06 · 23:05 UTC

Network segmentation is the second area to address in zero trust planning and implementation. With segmentation you’re enhancing security by dividing networks into isolated zones with strict access controls.

Based on professional observations from numerous successful intrusions, network segmentation is one of the most common zero trust concepts not implemented. This is often due to the cost, time, and the staff necessary to design, implement and secure legacy network infrastructure when those legacy networks are not perceived as “broken” by the end-users or leadership.   This is where the adage, “If it’s not broke, don’t fix it” is most apparent and a difficult, but necessary area to explain to corporate stakeholders.
To properly conduct network segmentation, you should consider the following:
1.      Threat Containment: Isolating segments limits the impact of breaches, aligning with zero trust's principle of minimal trust.
2.      Granular Access Control: Enforce stringent access policies, verifying users and devices continuously regardless of location.
3.      Layered Defense: Combine segmentation with other tools for robust security layers against cyber threats.
4.      Adaptive Security: Adjust controls dynamically based on threat intel and user behavior, ensuring agility against evolving threats.
5.      Compliance Assurance: Facilitate compliance by segregating sensitive data, reducing audit scope and regulatory risks.
6.      Implement network segmentation to fortify your security posture and embrace zero trust principles effectively.
Zero trust and network segmentation aren’t one and done matters. They require constant reevaluation and change, this process of continuous evaluation, although tedious, always works in the favor of the defender.
#networksegmentation #cybersecurity #infosec #ZeroTrustArchitecture

#networksegmentation #cybersecurity #infosec #zerotrustarchitecture
Hernâni Marques @[email protected] · 2021-05-19 · 21:48 UTC

Die Schweiz sollte aufwachen & sich ein Beispiel an der Biden-Administration nehmen - sie fordert die #ZeroTrustArchitecture in einer Executive-Order vom 12. Mai 2021:
"If a device is compromised, zero trust can ensure that the damage is contained." #ZTA https://www.whitehouse.gov/briefing-room/presidential-actions/2021/05/12/executive-order-on-improving-the-nations-cybersecurity/

#zta #zerotrustarchitecture