Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Trustwave

Protecting Zion: InfoSec Encryption Concepts and Tips

Apr 29, 2024 By Trustwave In Trustwave
This is Part 9 in my ongoing project to cover 30 cybersecurity topics in 30 weekly blog posts. The full series can be found here. In the movie The Matrix, The Key Maker controlled access to many locations and resources with the goal of preventing malicious code from destroying sensitive information. In a rare life-imitates-art situation, organizations today face the same challenge as they work to protect operational processes and corporate information.
Read Post
CrowdStrike

CrowdStrike Named a Leader in IDC MarketScape for Worldwide MDR

Apr 29, 2024 By Austin Murphy In CrowdStrike
The #1 global managed detection and response (MDR) provider and pioneer continues to dominate. Today, CrowdStrike was named a Leader in the 2024 IDC MarketScape: Worldwide Managed Detection and Response 2024 Vendor Assessment1 among the 19 vendors evaluated in the report. CrowdStrike was also recently named a Leader in Frost & Sullivan’s 2024 Frost Radar: Managed Detection and Response. The global demand for MDR continues to surge as businesses face a harsh reality.
Read Post
device authority

NIS 2 Directive: Strengthening IoT Security in the EU

Apr 29, 2024 By Louise José In Device Authority
In today’s interconnected world, the Internet of Things (IoT) plays a crucial role in various sectors, from healthcare and transportation to energy and critical infrastructure. However, with the increasing reliance on IoT devices comes the heightened risk of cybersecurity threats. To address these challenges and enhance cybersecurity measures across the European Union (EU), the NIS 2 Directive (Directive (EU) 2022/2555) was introduced.
Read Post
trilio

Immutable Backups: Importance, Benefits, and Implementation

Apr 29, 2024 By David Safaii In Trilio
Ransomware, human errors, and disasters are constant threats to your business’s most valuable asset –its data. Traditional backups, while essential, aren’t always enough since ransomware can still infiltrate them. That’s where immutable backups emerge as a crucial layer of protection. They ensure that even if the worst happens, your critical information remains untouched and recoverable.
Read Post
bluevoyant

Enhancing Cybersecurity with BlueVoyant's AI Technology for Emerging Vulnerabilities

Apr 29, 2024 By George Aquila In BlueVoyant
After a new zero-day vulnerability is announced, the National Vulnerability Database (NVD) publishes a measure of its severity under the Common Vulnerability Scoring System (CVSS). CVSS scores are a crucial tool for organizations as they give an approximation of the severity of disclosed vulnerabilities.
Read Post
Arctic Wolf

Cisco Duo Third-Party Compromise

Apr 28, 2024 By Andres Ramos In Arctic Wolf
On April 16, 2024, Cisco Duo informed affected customers of a breach involving their SMS and VOIP multi-factor authentication (MFA) service provider. The breach occurred on April 1st due to a phishing attack, allowing unauthorized access to the provider’s systems, including SMS and VoIP MFA message logs for specific Duo accounts between March 1st and March 31st, 2024. Though the threat actor accessed message logs, they did not obtain message content.
Read Post
Arctic Wolf

Critical Authentication Bypass Vulnerability in Delinea Secret Server Disclosed Along With PoC

Apr 28, 2024 By Andres Ramos In Arctic Wolf
On April 12, 2024, Delinea issued an advisory to address a critical authentication bypass vulnerability identified in the SOAP API component of its Secret Server product, available in both Cloud and On-Premises solutions. A threat actor could exploit this vulnerability to bypass authentication, gain administrative access, and extract sensitive information.
Read Post
Featured Post
ThreatQuotient

How threat intelligence can improve vulnerability management outcomes

Apr 27, 2024 By Chris Jacob, Global Vice President, Threat Intelligence Engineers In ThreatQuotient
It might surprise you to know that more than 70 new vulnerabilities are published every day. And despite their risk-reducing value in helping SOC teams address these, vulnerability management solutions have drawbacks. Often, they only provide a snapshot of an organization's vulnerabilities at a point in time. In fact, owing to their nature, vulnerabilities identified today may not exist tomorrow, or they may appear and disappear intermittently. This leaves security teams scrambling to understand not only what the risk is, but how it affects them and where they should start first with any remediation.
Read Post
Spectral

7 Steps to ensure compliance with the CJIS security policy

Apr 27, 2024 By Eyal Katz In Spectral
A high-profile case hangs in the balance. Suddenly, court systems are paralyzed. Evidence is locked away, replaced by a ransom demand. Every law enforcement agency’s nightmare is alarmingly common – 96% of organizations were hit by ransomware in the past year, according to Cisco’s 2023 report. Exposed API keys, forgotten cloud configurations, outdated systems – these seemingly small vulnerabilities are the entry points relentless cybercriminals exploit.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.