“I am very honored to have the opportunity to work with Mark. I got to know an exceptional leader, who at the same time understands the business world exceptionally and expert of the technical side as well. Mark is the person who gives the biggest support to his team even in the most difficult periods, so everyone gets the most out of themselves, and he also works hard to provide the background that all they need. He is typically someone who can always think outside the box and never runs out of ideas.”
About
With over two decades of cybersecurity experience, I am a seasoned CEO and product…
Services
Activity
-
Tech enthusiasts of the world, let’s meet next week in Barcelona! ✨MWC✨ is one of the most important events of the year that brings together the most…
Tech enthusiasts of the world, let’s meet next week in Barcelona! ✨MWC✨ is one of the most important events of the year that brings together the most…
Liked by Mark Felegyhazi
-
Well Mother Nature decided to have the last laugh. Symposium has been postponed due to the snow and ice. I hope North Carolina State University and…
Well Mother Nature decided to have the last laugh. Symposium has been postponed due to the snow and ice. I hope North Carolina State University and…
Liked by Mark Felegyhazi
-
🇲🇾Great discussions and collaboration during our visit to RADDISH TECHNOLOGY It was a pleasure connecting with the team and exploring ways to…
🇲🇾Great discussions and collaboration during our visit to RADDISH TECHNOLOGY It was a pleasure connecting with the team and exploring ways to…
Liked by Mark Felegyhazi
Experience
Education
-
University of California, Berkeley
-
Security researcher in the networking group
• Developed a proactive domain name filtering to mitigate spam domain registrations
• Studied measurement-based methods to disrupting spammer networks
• Analysed strategic behavior in cyber insurance and proposed methods to incetivize secure behavior -
-
• Studied distributed and strategic decision-making in computer networks, specifically in cybersecurity
• Devised methods to motivate participants in ad hoc networks to cooperate -
-
• Major in computer networking
• Minor in mobile communication -
-
• Deutschpsrachige Engineurausbilding (1996 - 1999)
-
-
Projects
-
TeamSpy – Obshie manevri. Ispolzovat’ tolko s razreshenija S-a
The CrySyS Lab, Budapest has been notified by the Hungarian National Security Authority (www.nbf.hu) about the detection of an ongoing high profile targeted attack affecting our home country, Hungary. During our investigation of the incident, we discovered a number of C&C servers, and a large number of malware samples that have been used in multiple attacks campaigns in the last couple of years. Indeed, the collected evidences suggest that part of the attack toolkit we discovered was…
The CrySyS Lab, Budapest has been notified by the Hungarian National Security Authority (www.nbf.hu) about the detection of an ongoing high profile targeted attack affecting our home country, Hungary. During our investigation of the incident, we discovered a number of C&C servers, and a large number of malware samples that have been used in multiple attacks campaigns in the last couple of years. Indeed, the collected evidences suggest that part of the attack toolkit we discovered was used back in 2010. It seems that the main objective of the attackers was information gathering from the infected computers. Many of the victims appear to be ordinary users, but some of the victims are high profile industrial, research, or diplomatic targets, including the case that triggered our investigation. As part of the attackers’ activities is based on misusing the TeamViewer remote access tool, we named the entire malicious toolkit TeamSpy.Other creators -
-
Investigations on MiniDuke malware
Earlier in February 2013, FireEye announced the discovery of a new malware that exploited a 0-day vulnerability in Adobe Reader. Now, we announce another, as yet unknown malware that exploits the same Adobe Reader vulnerability (CVE-2013-0640).
This new malware was named Miniduke by Kaspersky Labs with whom we carried out its first analysis. Our participation in this research was justified by a detected Hungarian incident. A detailed report on the results of our joint efforts has…
Earlier in February 2013, FireEye announced the discovery of a new malware that exploited a 0-day vulnerability in Adobe Reader. Now, we announce another, as yet unknown malware that exploits the same Adobe Reader vulnerability (CVE-2013-0640).
This new malware was named Miniduke by Kaspersky Labs with whom we carried out its first analysis. Our participation in this research was justified by a detected Hungarian incident. A detailed report on the results of our joint efforts has been published by Kaspersky Labs on their Securelist blog site. That report describes what we currently know about the operation of Miniduke including its stages, and also information on the C&C infrastructure and communications. We have published another report from CrySyS Lab that contains information on the indicators of Miniduke infections and gives specific hints on its detection.Other creators -
-
The Flame Malware ( sKyWIper (a.k.a. Flame a.k.a. Flamer): A complex malware for targeted attacks)
In an international collaboration, CrySyS team created a ~60 page detailed technical analysis on the Flame malware and disclosed this information on 28/05/2012, the same time when others also published information on this threat.. Flame was used to steal data in the Middle-East. CrySyS used the name sKyWIper, now mostly called the malware Flame and Flamer.
Other creators -
-
Duqu: A Stuxnet-like malware found in the wild
In autumn 2011 CrySyS Lab identified and named the Duqu malware which is related to the famous Stuxnet malware. The team produced the first detailed technical analysis on it.
Other creators -
-
Click Trajectories
-
The ability to monetize customers’ visits from the click of a single link entices companies to take part in spam-based advertising, filling people’s inboxes with billions of messages every day and engendering widespread antipathy. But fear not, this business has also given rise to a multi-billion dollar anti-spam industry. To combat the growth of spam-based advertising, UC Berkeley and UC San Diego computer scientists have presented a holistic analysis of the spam value chain in “Click…
The ability to monetize customers’ visits from the click of a single link entices companies to take part in spam-based advertising, filling people’s inboxes with billions of messages every day and engendering widespread antipathy. But fear not, this business has also given rise to a multi-billion dollar anti-spam industry. To combat the growth of spam-based advertising, UC Berkeley and UC San Diego computer scientists have presented a holistic analysis of the spam value chain in “Click Trajectories: End-to-End Analysis of the Spam Value Chain”. Their findings offer evidence that there may be a truly effective intervention through public policy action in Western countries.
Other creators -
Organizations
-
ISACA
Academic Advocate
-- organizing ISACA-BME relations - responsible for courses in IT security management
Recommendations received
4 people have recommended Mark
Join now to viewMore activity by Mark
-
🚀🚀🚀 Good example of what can happen when you build a beautiful product that people love! Huge congrats Eoin Hinchy and the Tines team!
🚀🚀🚀 Good example of what can happen when you build a beautiful product that people love! Huge congrats Eoin Hinchy and the Tines team!
Liked by Mark Felegyhazi
-
Less than a year after their Series A, fal has raised a $49M Series B, from Notable Capital, Bessemer Venture Partners, Andreessen Horowitz, Kindred…
Less than a year after their Series A, fal has raised a $49M Series B, from Notable Capital, Bessemer Venture Partners, Andreessen Horowitz, Kindred…
Liked by Mark Felegyhazi
-
During the icebreaker segment of our HR orientation for new joiners, we ask: ‘If you had the time, which hobby would you pursue?’ I’m grateful that,…
During the icebreaker segment of our HR orientation for new joiners, we ask: ‘If you had the time, which hobby would you pursue?’ I’m grateful that,…
Liked by Mark Felegyhazi
-
🚀 Great visit to our MSSP partner Nexagate’s Global SOC in Kuala Lumpur! It was fantastic to see their cutting-edge security operations in action 🔍…
🚀 Great visit to our MSSP partner Nexagate’s Global SOC in Kuala Lumpur! It was fantastic to see their cutting-edge security operations in action 🔍…
Liked by Mark Felegyhazi
-
𝐁𝐮𝐢𝐥𝐝𝐢𝐧𝐠 𝐢𝐧 𝐩𝐮𝐛𝐥𝐢𝐜. 𝐎𝐩𝐞𝐧𝐢𝐧𝐠 𝐝𝐨𝐨𝐫𝐬 𝐭𝐨 𝐨𝐮𝐫 𝐀𝐆𝐌 AGMs aren’t only for LPs. Confidential bits stay closed, the rest…
𝐁𝐮𝐢𝐥𝐝𝐢𝐧𝐠 𝐢𝐧 𝐩𝐮𝐛𝐥𝐢𝐜. 𝐎𝐩𝐞𝐧𝐢𝐧𝐠 𝐝𝐨𝐨𝐫𝐬 𝐭𝐨 𝐨𝐮𝐫 𝐀𝐆𝐌 AGMs aren’t only for LPs. Confidential bits stay closed, the rest…
Liked by Mark Felegyhazi
-
San Diego, here we come! SOCRadar is excited to be at the 2025 National K-12 Cybersecurity Leadership Conference, Feb 24-26 at The Westin San Diego…
San Diego, here we come! SOCRadar is excited to be at the 2025 National K-12 Cybersecurity Leadership Conference, Feb 24-26 at The Westin San Diego…
Liked by Mark Felegyhazi
-
Nagy örömmel dolgozom az ÖNKÉP Műhely vezetőjeként a PARIPA program fiataljainak soft skill-fejlesztésén! Egy nagyszerű év áll előttünk rengeteg…
Nagy örömmel dolgozom az ÖNKÉP Műhely vezetőjeként a PARIPA program fiataljainak soft skill-fejlesztésén! Egy nagyszerű év áll előttünk rengeteg…
Liked by Mark Felegyhazi
-
New Job Title Alert: Forward Deployed Software Engineer (FDSWE) I believe we'll see similar open roles in the near future. AI will eliminate many…
New Job Title Alert: Forward Deployed Software Engineer (FDSWE) I believe we'll see similar open roles in the near future. AI will eliminate many…
Liked by Mark Felegyhazi
Other similar profiles
Explore more posts
-
Wade Baker, Ph.D.
Heads up on this once in 5 years opportunity to sponsor Cyentia Institute research into the largest #cybersecurity incidents. See the call for sponsors for the 2025 "Xtreme" edition of the Information Risk Insights Study at the link below. #cyberrisk #cyberresilience #cyberattacks https://lnkd.in/etc6FjsY
2 Comments -
Wade Baker, Ph.D.
Thrilled to have the opportunity to analyze #vulnerability remediation timelines again, this time using data from NopSec. The chart below is based on a survival analysis of vulnerabilities across an environment. Essentially - the time it takes to remediate all affected assets after a vuln is discovered. Everytime I see analysis like this, I'm reminded of how different the real world of #vulnerabilitymanagement is from the "just patch it all yesterday" shallow advice that's so often bandied about. If it were that easy, vuln survival curves wouldn't look like this time after time. How does this square with your experience? I'll be discussing this chart and several others in a webinar next week. Register here and bring your questions, comments, and rants! https://lnkd.in/eHWDrEYN
26 Comments -
Taiye Lambo
This Kiteworks article explores various types of large files, such as databases, high-resolution videos, and scientific datasets, and describes methods for secure file transfers, including cloud storage and peer-to-peer sharing. It emphasizes the capability of the Kiteworks platform to handle large file transfers securely and efficiently. Guinness World Record for Largest File Transfer? 🤔 👉 Ream more: https://gag.gl/9THoTQ #cybersecurity #FileTransfer #LargeFileTransfer #Kiteworks
-
Wade Baker, Ph.D.
I often hear the question "Where/What are our biggest security exposures?" Cyentia Institute recently had the opportunity to explore this question using data from hundreds of thousands of attack path assessments conducted through the XM Cyber Continuous Exposure Management (CEM) platform. The attached figure gives a categorical breakdown of what we observed based on all entities (digital assets), total security exposures, and exposures affecting critical assets. . The left-most chart represents the attack surface based on broad categories of digital entities discovered during attack path assessments. Active Directory constitutes just over half of entities identified across all environments. On-premises IT and network devices account for another 31% of entities and cloud environments house the remaining 17%. Not all entities, however, are exposed via attack paths. If we change the scope of the attack surface to include only vetted exposures (entities susceptible to attack techniques), things look different. The middle chart captures this perspective and Active Directory exposures dominate the attack surface. But not all of those exposures affect critical assets. To be truly effective, Exposure Management must encompass all environments and account for where critical assets are most at risk. If we once again rescope the attack surface to focus on exposures to critical assets, a very different picture emerges, which is captured in the rightmost chart. Cloud environments now encompass over half of all critical asset exposures, followed by AD at 33% and IT/Network devices at 11%. Does this sync with exposures across your attack surface? Which perspective/view/chart is your primary guide for managing exposures? The full report contains tons of additional insights on exposure management. Download here: https://lnkd.in/dPfqXG7y #cybersecurity #exposuremanagement #cyberrisk
8 Comments -
Wade Baker, Ph.D.
ICYMI: The inaugural study on EPSS performance and broader vulnerability exploitation trends published this week. If you've ever wanted data-driven answers to questions like these listed in the ToC shown here, download it today (free, no registration req'd): https://lnkd.in/gBbsgwQM #vulnerabilitymanagement #vulnerabilities #infosec
8 Comments -
Lindsay P. Stought, CSM, PMP
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has identified a critical security issue affecting GeoServer, an open-source geospatial data server. The agency has added an OSGeo GeoServer GeoTools eval injection vulnerability, known as CVE-2024-36401 with a CVSS score of 9.8, to its Known Exploited Vulnerabilities (KEV) catalog. GeoServer versions prior to 2.23.6, 2.24.4, and 2.25.2 are susceptible to Remote Code Execution (RCE) due to the unsafe evaluation of property names as XPath expressions. This vulnerability stems from how the GeoTools library API, utilized by GeoServer, processes property/attribute names for feature types, exposing systems to arbitrary code execution. The flaw affects all GeoServer instances, as it incorrectly applies XPath evaluation to simple feature types, making them vulnerable to exploitation. #Cybersecurity #GeoServer #Vulnerability #RCE #CISA #SecurityAwareness https://lnkd.in/ggDbpkyr
-
Wade Baker, Ph.D.
It's time Cyentia Institute updated the Information Risk Insights Study "Xtreme" edition. I will be posting an official call for sponsors soon with more details, but reach out if you'd like to register your interest early. In a nutshell, we'll identify the costliest security incidents over the last several years to see what we learn about managing cyber risk. #infosec #cyberrisk #cyberresilience #cyberattacks
1 Comment -
Teri Radichel 🩵
Listening to a great talk on single point of failure supply chain by Tarah Wheeler at the IANS Boston security forum. Great talk and a great introduction to the discussion led later today on this issue. If you are here and want to continue this massively important issue join my session on supply chain at 1:05 PM. I believe this is one of the biggest problems in cybersecurity today. What can you do about it? What are you doing about it? Tarah is bringing up some great points. Have you implemented her suggestions? What have been your challenges? Have you considered the wide variety of sources of supply chain attacks? Software updates are not the only thing you need to worry about. What tools exist to help you defend against these attacks? This was a great introduction to today’s discussion and I hope it helps people consider the severity of this issue. Come to learn and share how you are dealing with supply chain attacks with your peers.
-
Do Van Son
Zyxel has issued an advisory for a newly identified security vulnerability, CVE-2024-12398, that affects multiple access points (AP) and security routers. With a CVSS score of 8.8, this vulnerability underscores the urgency for users to apply patches immediately to protect their systems from potential exploitation.
-
Do Van Son
Veritas has released a security advisory regarding a critical remote code execution (RCE) vulnerability affecting multiple versions of its Enterprise Vault (EV) software. Rated as a CVSS v3.1 score of 9.8, this issue exposes Enterprise Vault servers to potential exploitation through deserialization of untrusted data on .NET Remoting TCP ports.
-
Roy Zur
Why #Scams Are Different and What #Customer #Security Means? Scams target the #human factor directly - demanding a #paradigm #shift from protecting systems to #protecting #people. Yesterday, at the #FraudFighters IL Meetup hosted at the Team8 offices, I discussed how we can #rethink #fraud #prevention through Customer Security: 1️⃣ The #Human #Factor: Scams exploit #trust and #emotions, not systems. Understanding human #vulnerabilities and emerging scam trends is key to staying ahead. 2️⃣ #Beyond #Perimeters: Scams move across platforms — starting on #social #media and ending in a #bank transaction or #card #payment. Fighting them requires a connected view beyond any single organization. 3️⃣ #Beyond #Identity: Traditional fraud focuses on who you are. With scams, the challenge lies with the recipient, making #recipient #intelligence critical to prevention. 4️⃣ #Shattered #Trust: Scams hit people hardest - breaking trust and causing real #emotional #distress. Organizations must respond with #care, #support, and better #incident #response. Scams are not just another fraud type — they force us to rethink how we #protect people and help victims #recover. Oren Karmi - thanks for leading this #community! How do you think we can address this growing challenge together? I’d love to hear your thoughts. #FraudPrevention #ScamIntelligence #Cybersecurity #HumanFactor #CustomerSecurity #team8
8 Comments -
Tobias Musser
CMMC Level 2 Assessment Objective: Data in Transit PRACTICE: Organizations must implement cryptographic mechanisms to prevent unauthorized disclosure of controlled unclassified information (CUI) during transmission unless otherwise protected by alternative physical safeguards. ASSESSMENT: The intent of this requirement is to ensure CUI is cryptographically protected during transit, particularly on the internet. The most common way to accomplish this is to establish a transport layer security (TLS) tunnel between the source and destination using the most current version of TLS. Because the use of cryptography in this requirement is to protect the confidentiality of CUI, the cryptography used must meet the criteria specified in requirement SC.L2-3.13.11. Be prepared! Your assessor could ask to 🔍 EXAMINE system and communications protection policy. 🗣 INTERVIEW system or network administrators. 📝 TEST cryptographic mechanisms or mechanisms supporting or implementing transmission confidentiality. (CMMC Assessment Guide: Level 2 Version 2.11, page 222) #CMMC #DoD #cybersecurity #NIST #InformationSecurity https://bit.ly/45HMpUs
-
Taiye Lambo
This Kiteworks article provides valuable insights on ensuring user adoption for Managed File Transfer (MFT) systems, highlighting essential strategies such as user-centric design, effective change management, and seamless integration with existing workflows. By focusing on these areas, organizations can facilitate a smoother transition, enhancing user experience and ensuring the successful implementation of MFT solutions. It's a practical guide for IT leaders looking to optimize their file transfer processes and improve overall efficiency. Three Strategies to Drive MFT Adoption 👉 Read more: https://gag.gl/Cllz0o #cybersecurity #MFT #FileTransfer #Kiteworks
-
Tobias Musser
Wonder what a Certified Third-Party Assessor Organization (C3PAO) like MNS Group is really looking for from your organization during a NIST SP800-171 assessment? It’s the little things. We see some common areas where organizations get tripped up. For example: · You answer the question, then answer a question that wasn’t asked, which may lead to more questions. Our advice? Answer the question and stop talking. · Your procedure points to a location where a document is stored… and it’s not there. · Your procedures regarding permissions are murky or imprecise. These are the sorts of details that assessors will be checking. We want you to pass! As always, MNS Group stands ready to help your organization prepare for assessment, always with a strict eye toward adherence to all rules and regulations. And if you have a pressing question, I’m happy to respond! Just drop your thoughts below. #compliance #CMMC #RiskManagement #cybersecurity #contractors
1 Comment -
Ken Hansen
Coalfire (a respected QSAC) has published this excellent white paper on how HUMAN's Client-side Defense solution for PCI DSS 4.0, addresses requirements 6.4.3 and 11.6.1. Lean more about the "easy button" for protecting card holder data from third-party and nth party scripts. #payment #PCI #browsersecurity #cybersecurity #riskandcompliance #riskmanagement #compliance #ecommerce #retail https://lnkd.in/ehcbP-qN
Explore collaborative articles
We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.
Explore More