knowbe4

Threat Actors Abuse Google Translate to Craft Phishing Links

Jan 20, 2025 By Stu Sjouwerman In KnowBe4
Threat actors are abusing Google Translate’s redirect feature to craft phishing links that appear to belong to, according to researchers at Abnormal Security. Users are more likely to trust links that end in Google’s “.goog” domain, and security filters are less likely to flag these URLs as malicious. “When you enter a URL into Google Translate, it generates a new link, redirecting the user through its platform to the requested page,” the researchers explain.
Read Post

#187 - Automation in MSSP Operations with David Burkett, Cloud Security Researcher at Corelight

Jan 20, 2025 By LimaCharlie In LimaCharlie
On this episode of The Cybersecurity Defenders Podcast we talk about automation in MSSP operations with David Burkett, Cloud Security Researcher at Core light. David has deep expertise in cloud threat detection and automation. Over the course of his career, David has built and optimized three different Cyber Security Operations Centers for MSSP and MDR providers, demonstrating his unparalleled skill in scaling security operations through automation and efficient processes.
View Video

Foundation of Modern Cyber Defense: Building Resilient Security Frameworks | IdentityShield Summit

Jan 20, 2025 By miniOrange In miniOrange
Lokesh Singh Rajawat, Senior Software Engineer at miniOrange, delivers an engaging session on establishing foundational cybersecurity practices. Gain insights into crafting resilient security frameworks that serve as the cornerstone of modern cyber defense strategies, protecting against evolving threats in today’s digital landscape.
View Video
nightfall

Here's What We Can Learn from the Cyberhaven Incident

Jan 20, 2025 By The Nightfall Team In Nightfall
In December 2024, Cyberhaven fell victim to a sophisticated cyberattack that exploited a phishing campaign targeting its Chrome Web Store account. This breach compromised over 400,000 users by injecting malicious code into its browser extension, exfiltrating sensitive data such as cookies and session tokens. The incident has drawn significant attention due to Cyberhaven's role as a cybersecurity provider and the broader implications for browser extension security.
Read Post
tripwire

CIS Control 06: Access Control Management

Jan 20, 2025 By Matthew Jerzewski In Tripwire
CIS Control 6 merges some aspects of CIS Control 4 (admin privileges) and CIS Control 14 (access on a need-to-know basis) into a single access control management group. Access control management is a critical component in maintaining information and system security, restricting access to assets based on role and need. It is important to grant, refuse, and remove access in a standardized, timely, and repeatable way across an entire organization.
Read Post
tripwire

Think You Know Tripwire? Think Again

Jan 20, 2025 By David Henderson In Tripwire
Fortra’s Tripwire has always been widely known as a File Integrity Monitoring (FIM) solution, and a very good one at that. The good news is that it still is - only when you look closely, it’s a lot more. And it always has been. Besides its traditionally known role as an integrity and security configuration management tool, Tripwire’s powerful capabilities make it a comprehensive cybersecurity solution.
Read Post

How Ping Identity Automated Security & Cut Scanning Time from Weeks to Minutes with Mend.io

Jan 20, 2025 By Mend In Mend
Join Bruno Lavit, Risk Manager at Ping Identity, as he shares how they transformed their application security process using Mend IO. Learn how Ping Identity went from time-consuming manual security scans to fully automated CI/CD pipeline integration, reducing scanning time from weeks to minutes. Ping Identity improved their security posture while accelerating software development. Perfect for AppSec managers, CSOs, and risk managers looking to enhance their security automation.
View Video
tripwire

Managing Security and Compliance in a Remote Work Environment

Jan 20, 2025 By Joseph Chukwube In Tripwire
Remote work isn’t just a temporary trend anymore; it has become a permanent fixture. What began as a quick response during the pandemic has evolved into the new normal for businesses worldwide. In America, 20% of people now work from home. While this has its advantages (flexibility for workers and cost savings for businesses), it’s not without its complications, having cracked open a host of issues around cybersecurity and regulatory compliance.
Read Post
securitysenses

Fake Online Reviews. Fraud and a Growing Threat to Consumers and Businesses

Jan 20, 2025 By SecuritySenses In SecuritySenses
Online reviews have become an important source of consumer and business decision making, but they can also pose significant risks. In many cases, fake reviews are a form of fraud, with scammers using fake content to mislead consumers or even steal sensitive information.
Read Post
Subscribe to Security

Copyright © 2026 OpsMatters™. All rights reserved.