Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

upguard

An Overview of ENISA's Risk Management Standards Report

Sep 1, 2023 By Nicholas Sollitto In UpGuard
The European Union Agency for Cybersecurity (ENISA) published its Risk Management Standards report on March 16, 2022. The report's primary objective was to produce an organized overview of all published standards that address aspects of risk management. Subsequently, ENISA aimed to describe the various methodologies organizations can use to implement the risk management frameworks it covers.
Read Post
upguard

What are the Cybersecurity Requirements of SEC Regulation S-P?

Sep 1, 2023 By Nicholas Sollitto In UpGuard
The United States Securities and Exchange Commission (SEC) enacted Regulation S-P (Reg S-P) in 2000 to safeguard the financial information of consumers. The regulation requires financial institutions to develop written policies to protect customer records and regulate their internal data disposal activities. In March 2023, the SEC proposed amendments to Regulation S-P.
Read Post
knowbe4

You Asked and Here It Is! KnowBe4's New Content Manager Feature is Unveiled

Sep 1, 2023 By Stu Sjouwerman In KnowBe4

Customization, Your Way: With Content Manager you can customize your training content preferences effortlessly. Adjust passing scores, infuse branded themes, allow test-outs, and say goodbye to content skipping. And here's the kicker – it's available across all subscription levels.

Read Post
knowbe4

New Adversary in the Middle Platform Circumvents MFA Protections "At Scale"

Sep 1, 2023 By Stu Sjouwerman In KnowBe4

As Phishing as a Service (PhaaS) kits continue to evolve, news like recent attacks using the Greatness toolkit demonstrate how easy it is for novice attackers to access accounts despite multi-factor authentication (MFA) being enabled. We’ve seen plenty of adversary-in-the-middle (AiTM) attacks over the years, where the threat actor inserts themselves (in one form or another) into an existing communication, impersonating one of the parties in the communication.

Read Post
knowbe4

New "Early Warning" System in the U.K. Tips Off Ransomware Targets

Sep 1, 2023 By Stu Sjouwerman In KnowBe4

British Intelligence has come up with a potentially very effective means to disrupt ransomware attacks, but there seems to still be a few kinks in the system. The phone rings at your U.K. office and it’s the U.K. government’s National Cyber Security Centre (NCSC) letting you know they’ve detected a potential cyberattack.

Read Post
knowbe4

Nearly One-Quarter of Financial-Themed Spam Emails are Phishing Attacks

Sep 1, 2023 By Stu Sjouwerman In KnowBe4

While spam tends to be dismissed as being more an annoyance, new research shows that there is a very real and ever-present threat in emails that are marked as “spam”. I’ve written plenty about phishing attacks that target bank customers. It’s nothing new. What’s interesting is a recent article by security researchers at BitDefender where banking-related phishing attacks are considered spam.

Read Post
Pentest People

The Importance Of Firewall Penetration Testing In Your Security Strategy

Sep 1, 2023 By Pentest People In Pentest People

Firewall Penetration Testing is an essential part of any security strategy. It tests the effectiveness of firewalls and other network security measures by attempting to breach them, exposing vulnerabilities before attackers can exploit them. By conducting regular firewall penetration tests, organisations can protect their networks from malicious actors trying to gain access or disrupt operations.

Read Post

Copyright © 2026 OpsMatters™. All rights reserved.