Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Snyk

Command injection in Python: examples and prevention

Dec 21, 2023 By Rubaiat Hossain In Snyk

Despite Python's reputation for simplicity and versatility, ensuring the security of Python programs can be challenging if you or other team members neglect security best practices during development. Additionally, you’ll likely use libraries or other open source projects while building a Python application. However, these resources can introduce additional security issues that leave your program vulnerable to exploits such as command injection.

Read Post
mend

The Challenges for License Compliance and Copyright with AI

Dec 21, 2023 By Jeff Martin In Mend
So you want to use AI-generated code in your software or maybe your developers already are using it. Is it too risky? Large language model technology is progressing at rapid speeds, and policy makers are ill-equipped to catch up quickly. Anything resembling legal clarity may take years to come about. Some organizations are deciding not to use AI at all for code generation, while others are using it cautiously — but everyone has questions.
Read Post
memcyco

The Human Firewall: Your Guide to a Security Culture

Dec 21, 2023 By Lori Moss In Memcyco
It’s easy to think that securing the systems and data of an organization is primarily a technological undertaking. The human element of your cybersecurity strategy is usually seen as a weakness—and not without reason. According to estimates, up to 95% of breaches involve a human element. There’s only so much that technology can do to safeguard against human error and neglect of cybersecurity principles.
Read Post
Featured Post
11:11 systems

What are the top cybersecurity trends to look out for in 2024?

Dec 20, 2023 By Johnny Carpenter, General Manager EMEA In 11:11 Systems
As 2024 fast approaches, organisations are looking back on the past year to try and gain some insight into what the next 12 months could hold. This past year has been particularly interesting in the world of cyber security, with ransomware and data breaches dominating the headlines, the rise to prominence of AI strengthening cybercrime's arsenal, and the shift of focus to cyber resilience causing businesses to question what comes next for the industry.
Read Post
syteca

Insider Threat Risk Assessment: Definition, Benefits, and Best Practices

Dec 20, 2023 By Syteca In Syteca
Insider threats are expensive. The total average annual cost of an insider threat rose to $15.4 million according to the 2022 Cost Of Insider Threats Global Report by the Ponemon Institute . Companies spend a fortune on lawsuits, fines for non-compliance with security requirements, and mitigating the consequences of cybersecurity incidents — not to mention the negative impact of such incidents on an organization’s reputation.
Read Post
splunk

OT Security Is Different, Isn't IT?

Dec 20, 2023 By Ronald Beiboer In Splunk
In 2010 suddenly everyone was talking about OT security. Stuxnet had arrived. In 2021, The Colonial Pipeline hack increased the attention on the security of operational technology again. Since then, we have encountered numerous incidents, and the risk of breaches within the OT environment has increased significantly. But why is OT security a separate ‘thing’ in security. What is the difference between OT and IT in the cyber security field?
Read Post
cloudflare

Don't Let the Cyber Grinch Ruin your Winter Break: Project Cybersafe Schools protects small school districts in the US

Dec 20, 2023 By Zaid Zaid In Cloudflare

As the last school bell rings before winter break, one thing school districts should keep in mind is that during the winter break, schools can become particularly vulnerable to cyberattacks as the reduced staff presence and extended downtime create an environment conducive to security lapses. Criminal actors make their move when organizations are most vulnerable: on weekends and holiday breaks.

Read Post
netskope

A Look at the Nim-based Campaign Using Microsoft Word Docs to Impersonate the Nepali Government

Dec 20, 2023 By Ghanashyam Satpathy In Netskope

Threat actors often employ stealthy attack techniques to elude detection and stay under the defender’s radar. One way they do so is by using uncommon programming languages to develop malware. Using an uncommon programming language to develop malware provides several benefits, including: Netskope recently analyzed a malicious backdoor written in Nim, which is a relatively new programming language.

Read Post

Copyright © 2026 OpsMatters™. All rights reserved.