Events
ThreatModeler Help

👋 Welcome to the Threat Modeling Community

345 Topics
461 Replies
295 Members

Implement your threat models
Learn how to automate your processes
Scale your entire threat modeling practice

Let's Dive In

ThreatModeler Community News Feed

Recently active
Unanswered Questions
Discussion Categories

ThreatModeler

ThreatModeling Cloud

Advantages and Disadvantages of Migrating Applications to the Cloud: A Security PerspectiveBlog

Introduction In the fast-paced digital era, businesses are continuously evaluating the pros and cons of migrating their applications from traditional on-premises hosting to cloud-based solutions. While the cloud offers numerous advantages, especially in terms of scalability and flexibility, it also raises security concerns. This article explores the advantages and disadvantages of moving applications from local hosting to the cloud from a security standpoint. We'll also delve into how threat modeling can be employed to mitigate potential security risks associated with cloud migration. Advantages of Cloud Hosting Scalability and Flexibility: Advantage: Cloud platforms allow businesses to easily scale their resources up or down based on demand. This flexibility ensures optimal performance without over-provisioning resources. Security Perspective: Properly configured, cloud services ensure that security scales with the resources, reducing the risk of overexposure. Cost-Efficiency: Advanta

14 minutes ago

aabughannam

Water Cooler Talk

What are the top 5 most used apps on your phone?

We rely on our phones for practically everything. It is time we take a look at our devices to analyze the top 5 apps that keep our heads down.

23 minutes ago

prowarenessit

About ThreatModeler

Are public free email addresses not allowed for the ThreatModeler community sign up?

Thanks for the great tool, and allowing a community edition for the security community.The sign up page here https://community.threatmodeler.net/auth/signup does not allow signing up with gmail or hotmail. When entered an email address with gmail.com or hotmail.com, and error “Given email domain is in the restricted list” is displayed.For some of our consultants that work with us on contract basis, they can’t sign up with their private emails.What are the allowed domains? Only privately help business domains are allowed for sign up?

5 hours ago

ThreatModeler

News & Announcements

The Crucial Role of Cybersecurity Training and Awareness in the ICS OT IndustryBlog

In the ever-evolving landscape of technology, industrial control systems (ICS) and operational technology (OT) are at the forefront of innovation. These systems are the backbone of critical infrastructure, playing an essential role in various industries, from energy and manufacturing to transportation and healthcare. As these sectors increasingly embrace digital transformation, cybersecurity training and awareness in the ICS OT industry becomes more critical than ever.You might be thinking, "Cybersecurity? That sounds like a techy thing." Well, let me break it down for you to understand it better. The Growing Cybersecurity Threat Landscape With the proliferation of interconnected devices and the adoption of new industry principles, ICS OT environments have become more vulnerable to cyber threats. These threats range from ransomware attacks to sophisticated nation-state-sponsored hacking attempts. In this context, the significance of cybersecurity training and awareness cannot be overs

3 days ago

prowarenessit

About ThreatModeler

Are public free email addresses not allowed for the ThreatModeler community sign up?

5 hours ago

Harsh Patel

Got a Question?

Critical Infrastructure Assets

What are the top 3 assets that come to your mind when you hear the term Critical Infrastructure? Why?

1 month ago

Todd

ThreatModeling AutoMotive

Automotive Standards and Compliance Frameworks

Are you part of the automotive industry? What automotive standards and compliance frameworks are most important to your organization? ISO 21434? UNECE?

1 month ago

appio

Marketplace Discussion

An advanced interactive application security tool

AIAST – An advanced interactive application security tool identifying vulnerabilities in both self-developed code and open-source dependencies. Seamlessly integrate into CI/CD and can be applied in both application development phase and application deployment phase.

3 months ago

Shaiphali Mishra

Water Cooler Talk

Fun Friday: ”Guess the Password" challenge

A man locked his personal computer with a password and wrote some phrases in the hint box. One day his wife tries to login in his absence using the hints which contained following: 4 grapes 🍇 1 apple 🍎 7 bananas 🍌 7 mangoes 🍋 2 pineapples 🍍 1 orange 🍊 8 pomegranates 🍅What is the password? and share your fun logic puzzles

5 months ago

Udipt Bhuyan

Security News

DDoS (Distributed Denial of Service) attacks are a major concern in today's Internet security.

Google's Threat Analysis Group (TAG) published a blog update on October 16, 2020, outlining how threats and threat actors are adapting their strategies in light. Similarly GitHub, was hit with a DDoS attack that clocked in at 1.35 terabits per second and lasted for roughly 20 minutes. According to GitHub, the traffic was traced back to “over a thousand different autonomous systems (ASNs) across tens of thousands of unique endpoints.”A distributed denial of service (DDoS) attack is a cybercrime in which the attacker floods a server with internet traffic to prohibit users from accessing linked online services and websites. It is a brute-force attempt to slow down or fully crash a server. https://portswigger.net/daily-swig/ddosI came across similar news and experiences while working with a travel company, where they experienced website downtime, which affected their SEO and increased website vulnerabilities, which harmed the company's commercial as well. As a result, they took too long to

6 months ago

Shaiphali Mishra

Security News

Threat Modeling Tools Market to Experience Rapid Expansion, Worth $1.6 Billion by 2027.

Expansion of the Threat Modeling Tools Market and its estimated worth of $1.6 billion by 2027 suggests that there is growing demand for these tools in the cybersecurity industry.Read Full Article- https://finance.yahoo.com/news/threat-modeling-tools-market-worth-163000694.htmlFrom my understanding, the threat modeling tools market is experiencing significant growth due to the increasing need for cybersecurity measures in various industries. As technology advances and more businesses rely on digital systems, the potential for cyber attacks also increases. Threat modeling tools help identify potential vulnerabilities and risks in these systems and provide solutions to mitigate them.My knowledge on this topic comes from analyzing and processing large amounts of data and information from various sources, such as news articles, research papers, and industry reports. Through natural language processing and machine learning algorithms, I can understand and interpret complex information and pr

6 months ago

Anonymous

Security News

Heart Device Maker Says Hack Affected 1 Million Patients

https://www.govinfosecurity.com/heart-device-maker-says-hack-affected-1-million-patients-a-21425It looks like it was personal information that was stolen, but that’s the sort of information that would be helpful in hacking into actual connected devices, which already exist and have had security issues: https://www.ahajournals.org/doi/10.1161/CIRCULATIONAHA.118.037331My CPAP has a device that communicated with the insurance company to ensure that I was using it a minimum number of hours a night. Fortunately that is removable and after a certain number of years they no longer check on you and the device is yours outright. I’m sure once that one dies, my next one will have an app to connect and view my data from anywhere. Not sure if I’ll be enabling that feature. Anyone else have any connected medical devices?

6 months ago

Udipt Bhuyan

Water Cooler Talk

WEEKEND INSIGHTS: If you could learn any skill or hobby over the weekend, what would it be?

I'd like to learn to play the Ukulele properly and gain more hands-on experience with Illustration art.It's a delightful and fun hobby: playing the ukulele can help you relax and unwind, and it's a good thing to do with friends and family.Learning to play a musical instrument like the ukulele can improve your cognitive functions and lead to improvements in your memory, concentration and coordination.Illustration is a powerful way of visual communication that allows you to convey your ideas, emotions and thoughts in an original and persuasive way, which improves communication skills.

6 months ago

patjalvarez

Security News

Could Electric Vehicles Be Hacked?

Did anyone watch this video the Wall Street Journal published? Cybersecurity experts warn that EVs will be ripe targets for hackers unless more attention is paid to the risk. I think I'm like most people following the trend of wanting a more eco-friendly environment, but I can't help but worry that electric vehicles are especially vulnerable to cyberattacks. Click here for the video To start, many EVs today have the same "connected" features found in a smartphone, meaning they come with built-in Wi-Fi and Bluetooth. This means hackers could potentially access the car's systems remotely to control its functions or retrieve data from it. Hackers could also use a car's navigation system to track its movements, or even disable the vehicle completely.Ultimately, there's no way to guarantee an EV won't be hacked, but automakers and security experts can work together to protect against cyber threats and make sure EVs are as safe as possible. As more people switch over to electric vehicles,

6 months ago

Forum

Get inspired and gain all the knowledge you need

ThreatModeling Medical Devices

3 topics
8 Replies

ThreatModeling Cloud

2 topics
1 Reply

ThreatModeling AutoMotive

3 topics
11 Replies

ThreatModeling AppSec

2 topics
4 Replies

ThreatModeling Critical Infrastructure

1 topic
2 Replies

ThreatModeling Containers

0 topics
0 Replies

Got a Question?

10 topics
26 Replies

Marketplace Discussion

5 topics
5 Replies

Share your best practices

17 topics
33 Replies

Security News

31 topics
87 Replies

Water Cooler Talk

20 topics
162 Replies

Community HQ

Here is the heart of the Community. Come and get to know our community members!

Thought Leadership

9 topics
14 Replies

News & Announcements

137 topics
67 Replies

ThreatModeler Blogs

73 topics
30 Replies

Cartoons

13 topics
6 Replies

Podcast

2 topics
4 Replies

Commonly Asked Questions

Commonly asked questions.

About ThreatModeler

13 topics
1 Reply

Release Notes

New Features

6.0

0 topics
0 Replies

Check out our podcast

Upcoming Events

Threat Model Marketplace

Awarded Badges widget

Ekta Yadavhas earned the badge Easy talker
patricia.beaulieuhas earned the badge Easy talker
Harsh Patelhas earned the badge Easy talker
catiecangialosihas earned the badge Easy talker
aabughannamhas earned the badge Easy talker

Show all badges

Need more help?

Contact support

Contact our support team and we'll be happy to help you get up and running!

Products

Decoding Threats, Delivering Solutions.

Resources

Find all the guidance you need as you navigate through our success resources.

DISCORD

Level up your security game by joining the ThreatModeler Discord Community!

SLACK

Unite Against Threats: Join the ThreatModeler Slack Community Today!

Collaborate, Innovate, Secure: Join our r/ThreatModeler Reddit community!

Terms & Conditions Cookie settings

Sign up

Already have an account? Login

Social Login

Username *

E-mail address *

Company

(Private)

Only you and moderators can see this information

Job Title

(Private)

Only you and moderators can see this information

A bit about yourself *

Phone Number

(Private)

Only you and moderators can see this information

City

(Private)

Only you and moderators can see this information

Country

Password *

I accept the terms & conditions

loginBox.register.email_repeat

Login to the community

No account yet? Create an account

Social Login

Username or Email

Password

Remember me

Forgot password?

Enter your username or e-mail address. We'll send you an e-mail with instructions to reset your password.

Username or e-mail

Back to overview

Scanning file for viruses.

Sorry, we're still checking this file's contents to make sure it's safe to download. Please try again in a few minutes.

This file cannot be downloaded

Sorry, our virus scanner detected that this file isn't safe to download.

👋 Welcome to the Threat Modeling Community

ThreatModeler Community News Feed

Advantages and Disadvantages of Migrating Applications to the Cloud: A Security PerspectiveBlog

SapphireStealer: An Evolving Threat in the World of Information StealersBlog

Microsoft AI Data BreachBlog

Automotive Cybersecurity Standards and RegulationsBlog

The Crucial Role of Cybersecurity Training and Awareness in the ICS OT IndustryBlog

Check out our podcast

Upcoming Events

Featured Video

Threat Model Marketplace

Awarded Badges widget

Need more help?

Sign up

Social Login

Login to the community

Social Login

Scanning file for viruses.

This file cannot be downloaded