Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

upguard

Protecting Student Health Data: TPRM for Higher Education

May 3, 2024 By Leah Sadoian In UpGuard
Higher education institutions are a growing target for cybercriminals due to the high volume of sensitive information and data they collect and use. From enrollment to matriculation, colleges and universities utilize student data for everything from financial aid packages to determining eligibility for coursework. According to a report by Check Point Research, the education sector (specifically higher education) has experienced significantly more cyber attacks than any other industry in recent years.
Read Post
upguard

The EU Cyber Diplomacy Toolbox: Shaping Global Cybersecurity Standards

May 3, 2024 By Leah Sadoian In UpGuard
The EU Cyber Diplomacy Toolbox is a framework developed by the European Union to enhance its ability to prevent, deter, and respond to malicious cyber activities that may threaten its external security. The European Commission adopted the Toolbox in 2017 as part of the EU's broader strategy to promote a global, open, stable, and secure cyberspace.
Read Post
upguard

What is the Utah Consumer Privacy Act (UCPA)?

May 3, 2024 By Nicholas Sollitto In UpGuard
The Utah State government passed the Utah Consumer Privacy Act (UCPA) in March 2022, scheduling the law to go into effect on December 31, 2023. Utah is the fourth state in the United States to pass a state privacy law. Compared to preceding US privacy laws, such as the California Consumer Privacy Act (CCPA), Virginia Consumer Data Protection Act (VCDPA), and Colorado Privacy Act (CPA), the UCPA has a narrower scope, making the law more friendly to businesses and data controllers.
Read Post
ignyte Team

DD2345 Military Critical Technical Data Agreement and CMMC

May 3, 2024 By Max Aulakh In Ignyte
What is the government if not an organization dedicated to the creation of paperwork? All of that paperwork means something, though, and it can range from trivial to vitally important. One of the more important forms, if it’s required for your business or institution to fill out, is the DD2345 form. What is it, what is it used for, do you need one, and how does it interact with CMMC?
Read Post
Trustwave

Using a Systematic Approach to Creating an Offensive Security Program

May 3, 2024 By Trustwave In Trustwave
An offensive security strategy is a sophisticated and dynamic approach that extends beyond mere testing. It's a comprehensive plan that aligns with an organization's core mission, transforming security from a passive shield to an active spearhead. After all, in any fight, a combatant can only block punches for so long before striking back.
Read Post
WatchGuard

Malware-as-a-Service (MaaS): How to protect your customers

May 3, 2024 By The Editor In WatchGuard
The cyberthreat landscape is in a state of constant evolution. As the digital dependency of businesses grows, so do the opportunities for those looking to take advantage of it. In recent years, we have witnessed an upsurge in a new type of malicious actor: the non-technical cybercriminal.
Read Post
securitysenses

Building Trust and Engagement: Mobile App Security for the Modern User

May 2, 2024 By SecuritySenses In SecuritySenses
In today's fast-paced digital world, the focus is on creating secure and frictionless mobile applications that prioritize user privacy. This balance is particularly critical when dealing with in-app subscription management, a key revenue source and a hot spot for user data interaction. Proper management of these subscriptions is crucial for both securing continuous revenue and ensuring user trust alongside compliance with strict data protection standards.
Read Post
securitysenses

Detecting and Preventing Reconnaissance Attacks

May 2, 2024 By SecuritySenses In SecuritySenses
In 2024, every business across the world is already aware of the looming potential of a cyber attack. With billions of dollars pouring into the cyber criminal market each year, hackers have more backing to create large-scale attacks, breaching financial records, private data, and customer information. Reconnaissance attacks are the first step in many of these major breaches. By scouting out a business, collecting information about its security posture, and aiming to identify vulnerabilities, these initial attacks give hackers the data they need to launch precise, damaging attacks.
Read Post
chaossearch

Top Security Data Types: Exploring the OCSF Framework

May 2, 2024 By David Bunting In ChaosSearch
In cybersecurity, it’s a big challenge to handle diverse data formats across various platforms. The Open Cybersecurity Schema Framework (OCSF) aims to address this by standardizing data security formats and simplifying the process of threat hunting. Major players like IBM, AWS and others are working together to standardize data with this open-source project, emphasizing its importance.
Read Post
outpost 24

Paris Olympic Games wins cybersecurity silver - how does your attack surface compare?

May 2, 2024 By Marcus White In Outpost 24
Using our own proprietary External Attack Surface Management (EASM) solution, Outpost24’s Sweepatic, we have conducted an attack surface analysis on the Paris 2024 Olympic Games online infrastructure. The Paris 2024 cybersecurity team have done plenty right, but we’ve also highlighted some real-life attack surface risks that have slipped through the gaps (and do so for many organizations) including open ports, SSL misconfigurations, cookie consent violations, and domain squatting.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.