Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Latest News

Arctic Wolf

The Role of Pretexting in Cyber Attacks

Nov 18, 2024 By Arctic Wolf In Arctic Wolf
A threat actor sends an email to a user at an organization claiming to be from the IT department. They need a password to a critical application, and the email is convincing – it mentions aspects of the application that would only be known to the user, it brings up a recent update email that was sent out company wide, and it even closes with a friendly, “Hope to see at next week’s happy hour!” in the sign-off.
Read Post
a10 networks

The Strategic Advantage of Hybrid DDoS Protection: Cost Efficiency and Enhanced Control

Nov 15, 2024 By Jamison Utter In A10 Networks
In the digital age, distributed denial of service (DDoS) attacks pose a significant threat to organizations, potentially leading to service disruptions and financial losses. To effectively combat these threats, businesses are increasingly adopting hybrid DDoS protection solutions. By integrating cloud traffic scrubbing, on-premises local protection, global DDoS-specific threat intelligence, and an orchestration platform, hybrid solutions offer a comprehensive defense strategy.
Read Post
cyberint

Not Your Grandfather's Hacktivists: How Hacktivism Has Evolved

Nov 14, 2024 By Coral Tayar In Cyberint
Hacktivism – the practice of carrying out cyberattacks to advance political or social goals – is not new. Hacktivist attacks go as far back as the 1980s. Yet today’s hacktivists often look and operate in ways that are markedly different from their predecessors. They’ve embraced new techniques, they often have more resources at their disposal and they can prove more challenging to stop.
Read Post
cyphere

Major cyber attacks and data breaches of 2024

Nov 14, 2024 By Harman Singh In Cyphere
As 2024 draws to a close, the cybersecurity landscape continues to evolve, marked by both familiar adversaries and emerging threats with newer technologies and improved tactics. Rather than merely cataloguing breaches, we look into the anatomy of significant cyber attacks, associated vulnerabilities that led to such events, and relevant controls. We’ve chronicled key developments month by month, offering a comprehensive view of the cyber attacks of 2024 narrative that would help you learn lessons.
Read Post
securitysenses

The Rise of Security in Today's Technology Era

Nov 14, 2024 By SecuritySenses In SecuritySenses
In today's connected world, security is one of the most crucial fears for both people and institutions. With the increase in internet use, digital transformation as well as new technologies such as cloud computing and the Internet of Things (IOT), cyber threat attack surface has increased substantially. Cybercriminals, hackers, and other malicious actors are increasingly faced with the need to secure these assets from them as more data and processes go online, thus making it a more complex endeavor.
Read Post
knowbe4

Fortifying Defenses Against AI-Powered OSINT Cyber Attacks

Nov 13, 2024 By James McQuiggan In KnowBe4
In the ever-evolving landscape of cybersecurity, the convergence of Artificial Intelligence (AI) and Open-Source Intelligence (OSINT) has created new opportunities for risk. It is crucial to understand that this powerful combination is also being weaponized by cybercriminals, presenting unprecedented challenges for organizations worldwide.
Read Post
aikido

The State of SQL Injection

Nov 11, 2024 By Mackenzie Jackson In Aikido
SQL injection (SQLi) has a history that is older than Internet Explorer (which according to Gen Z was the start of civilization). There have been thousands of breaches caused by SQL injection and an endless amount of well-documented best practices and tools to help prevent it. So surely, surely we learned our lesson from these breaches and SQLi is no longer an issue.
Read Post
securitysenses

How to Conduct a Comprehensive Base Security Assessment

Nov 11, 2024 By SecuritySenses In SecuritySenses
Conducting a comprehensive base security assessment is crucial. It ensures the safety of personnel, assets, and information. With the rise of various threats, it's more important than ever to evaluate and enhance security measures systematically. A thorough assessment not only identifies weaknesses. It also assists in implementing effective security controls to mitigate risks. In this detailed guide, we will explore essential steps and best practices to perform a base security assessment. We will enable you to deploy effective security solutions tailored to your environment.
Read Post
datadog

Protect your applications from zero-day attacks with Datadog Exploit Prevention

Nov 7, 2024 By Christophe Papazian In Datadog
Due to their numerous components and dependencies, web applications often have multiple vulnerabilities—many of them unknown and susceptible to zero-day attacks—that can be exploited by malicious HTTP requests. Determining whether a vulnerability exists is challenging without visibility into an application’s real-time data and event flows, which isn’t possible with existing firewall-based solutions.
Read Post
knowbe4

Attackers Abuse DocuSign to Send Phony Invoices

Nov 7, 2024 By Stu Sjouwerman In KnowBe4
Threat actors are abusing DocuSign’s API to send phony invoices that appear “strikingly authentic,” according to researchers at Wallarm. “Unlike traditional phishing scams that rely on deceptively crafted emails and malicious links, these incidents use genuine DocuSign accounts and templates to impersonate reputable companies, catching users and security tools off guard,” Wallarm says.
Read Post

Copyright © 2024 OpsMatters™. All rights reserved.