Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

If you’ve implemented BDRSuite in your environment and think you’re finished, you might be mistaken. Following the implementation of a backup and restore strategy, it’s crucial to implement proper monitoring. Firstly, you want to know the health state of your backup infrastructure and the underlying layer. Secondly, you want to know whether the scheduled backup jobs have succeeded or failed. This is where SMTP, or Simple Mail Transfer Protocol, comes into play.

Google Cloud Platform (GCP) provides users with the ability to make reservations, allowing them to reserve virtual machine instances and save costs. With GCP reservations, users can plan and allocate their computing resources more effectively. By reserving instances ahead of time, users can ensure that their applications have the necessary compute capacity, while also benefiting from significant cost savings compared to on-demand pricing.

In late November 2023, a phishing campaign successfully compromised hundreds of user accounts, including those belonging to high-ranking executives, across dozens of Microsoft Azure environments.

Search engine optimisation (SEO) is crucial marketing tool for driving organic traffic to websites. It works on a simple premise that users trust top search results are the most relevant to their needs. In general, we will feel much more confident digesting content or buying products or services from top search engine results.

Every day, the growing threat landscape presents new challenges for security teams, with threats becoming more diverse and complex. But while teams typically have the tools to gather the intelligence they need, they often run into trouble with the next steps in the process - enriching, prioritizing and responding to this intel.

Semgrep is a leading static application security testing (SAST) tool powered by an open-source community for surfacing bugs, discovering vulnerabilities, and enforcing code standards. Semgrep has scanned over 75 million packages, contributed to 2000 community rules, and supports over 30 coding languages. Riscosity is the leading data flow observability and security platform. This is why we’re excited to announce Ricosity’s new integration with Semgrep.

Over the past year, countless articles, predictions, prophecies and premonitions have been written about the risks of AI, with GenAI (Generative AI) and ChatGPT being in the center. Ranging from its ethics to far reaching societal and workforce implications (“No Mom, The Terminator isn’t becoming a reality… for now”). Cato security research and engineering was so fascinated about the prognostications and worries that we decided to examine the risks to business posed by ChatGPT.

Safeguarding classified information is paramount to the security of any nation and its allies. However, modern collaboration tools and devices have made protecting it more challenging without the proper guardrails. Understanding classified information handling requirements and the technologies that can help enforce these obligations are the keys to preventing unauthorised access, dissemination and exposure of classified information.

Third-party vendors, contractors, and partners are often an integral part of an organization’s operations. However, they can also pose significant security risks if not properly managed, with poor cybersecurity practices increasingly becoming a major contributing factor to supply chain disruptions. If your organization relies on third parties for anything, understanding and managing their risk should be at the top of your list.

This month, the Nightfall team has some exciting product enhancements to share with you, including an expansion of our secrets detectors as well as brand new APIs for automated workflows. Dive in to find out what we've been working on—as well as what's coming next.