Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Latest News

tripwire

Insider Threats Maintain a Rising Trend

May 14, 2024 By Katrina Thompson In Tripwire
“When the cat’s away, the mouse will play,” the old adage goes. Filings to anti-fraud non-profit Cifas would support that claim, as Insider Threat Database (ITD) reports rose by 14% this past year and are largely attributable to hard-to-monitor work-from-home employees mixed with “increasing financial pressures.” The report details further incidents of dishonest behavior as recorded this year by the UK’s National Fraud Database (NFD).
Read Post
ThreatQuotient

Selecting the Optimal Threat Intelligence Platform in 5 Steps

May 14, 2024 By Noor Boulos In ThreatQuotient
To use threat intelligence and data more productively, many organizations are investing in a threat intelligence platform (TIP). Selecting a TIP is important as it will serve as the foundation for your entire security operations program, allowing you to understand and act upon the highest priority threats you face, while enabling you to get more from your existing resources — technology and people. However, amidst a plethora of options, selecting the right TIP can be daunting.
Read Post
knowbe4

"Unknown" Initial Attack Vectors Continue to Grow and Plague Ransomware Attacks

May 14, 2024 By Stu Sjouwerman In KnowBe4
Trend analysis of ransomware attacks in the first quarter of this year reveals a continual increase in the number of "unknown" initial attack vectors, and I think I might understand why. There are two reports that you should be keeping an eye on—the updated Verizon Data Breach Report and ransomware response vendor Coveware’s Quarterly Ransomware Reports. In their latest report covering Q1 of this year, we see a continuing upward trend in “unknown” as the top initial attack vector.
Read Post
knowbe4

Attackers Leveraging XSS To Make Phishing Emails Increasingly Evasive

May 14, 2024 By Stu Sjouwerman In KnowBe4
Attackers are exploiting Reflected Cross-Site Scripting (XSS) flaws to bypass security filters, according to a new report from Vipre. This technique allows attackers to send benign links in phishing emails that will redirect users to malicious sites. Vipre also found that attackers are increasingly using links instead of malicious attachments in their phishing emails. “Three years ago, it was a 50/50 split between phishing emails utilizing links versus attachments,” the researchers write.
Read Post
knowbe4

New Research: Number of Successful Ransomware Attacks Rise 29% in a Just One Year

May 14, 2024 By Stu Sjouwerman In KnowBe4
New analysis of Q1’s ransomware attacks uncovers a single group responsible for the majority and discusses what makes them so successful. This sort of analysis helps to establish threat landscape trends and keeps our collective focus on the places where cyber attacks are working.
Read Post
securitysenses

How Amazon Marketing Agencies and Sellers Work Together

May 14, 2024 By SecuritySenses In SecuritySenses
For businesses selling products on Amazon's massive e-commerce platform, the opportunities for growth and revenue are immense. But so is the competition from other sellers vying for the same digital real estate and customer attention. Given these intense market dynamics, many brands wisely choose to partner with specialized Amazon marketing agencies to elevate their product visibility and conversion rates.
Read Post
securitysenses

The Importance of Analytical Testing in Cybersecurity

May 13, 2024 By SecuritySenses In SecuritySenses
Today, cyber threats evolve at a breakneck pace, and the significance of analytical testing in cybersecurity is a major bulwark against these threats, vital for organizations aiming to protect their data and systems from sophisticated cyberattacks. Analytical testing in cybersecurity involves a series of systematic assessments designed to detect and mitigate vulnerabilities in an organization's cyber infrastructure. It incorporates different types of validity, such as content, construct, and criterion. Ultimately, it can ensure a comprehensive evaluation of security systems.
Read Post

Copyright © 2024 OpsMatters™. All rights reserved.