Tag

#Detection & Validation

2 articles covering Detection & Validation across campaign analysis, detection engineering, and defender tradecraft.

Coverage

2 entries

Field Analysis

Blue TeamDetection & ValidationMay 31, 20267 min read

Chrome Binds the Cookie: A Defender's Brief on Device Bound Session Credentials

Chrome's Device Bound Session Credentials, now generally available and on by default for Workspace, tie session cookies to a device's security chip so a stolen cookie is useless off the machine it came from. Here is what it stops and what it does not.

By PhishPond Desk

#Detection & Validation
#Session Hijacking
#Infostealers

Field Analysis

Blue TeamDetection & ValidationMay 31, 20266 min read

npm Staged Publishing Moves Package Security Toward Human-Gated Release

GitHub's staged publishing and new npm install-source controls give maintainers practical ways to slow compromised CI/CD paths before a malicious package becomes installable.

#Detection & Validation

Coverage

Browse Other Tags