ionix

Exploited! Kerio Control's HTTP Response Splitting Vulnerability (CVE-2024-52875)

Dec 18, 2024 By Fara Hain In IONIX
CVE-2024-52875 is an HTTP Response Splitting vulnerability in Kerio Control. This flaw allows an attacker to inject malicious input into HTTP response headers by introducing carriage return (\r) and line feed (\n) characters. Such manipulation can cause the server to send multiple HTTP responses instead of one, leading to various attacks.
Read Post
bitsight

Enhancing Corporate Governance in the Digital Age: Integrating Cybersecurity into ESG Stewardship

Dec 18, 2024 By Nicole Matusek In BitSight
In an era where digital resilience is vital to corporate health, cybersecurity is a critical governance issue. The partnership between Bitsight and Glass Lewis underscores this reality by providing companies with a forward-thinking approach to assessing cybersecurity as part of Environmental, Social, and Governance (ESG) considerations.
Read Post
gitprotect

Top 14 GitHub Data Risks: Data Loss Scenarios and How to Prevent Them

Dec 18, 2024 By Wojciech Andryszek In GitProtect
While GitHub offers robust features, preventing data loss risks requires proactive measures. It’s vital as businesses increasingly rely on GitHub for source code management, safeguarding repositories against data loss, breaches, and operational disruptions. This overview explores the 15 most common data risks and provides actionable strategies for securing repositories and maintaining seamless development workflows. Contents hide 1 Risk 1. Accidental deletion of repositories 2 Risk 2.
Read Post
obrela

Get a unified approach towards Compliance with NIS2 and DORA

Dec 18, 2024 By Notis Iliopoulos In Obrela
In the cyber security domain, the increase of cyber-attacks alongside the acceleration of businesses’ digital transformation, drive states to deploy a more ringent regulatory framework to protect data and establish a code of conduct for businesses. In this perspective, it is essential to view compliance as an integral component of the wider governance framework, which is grounded in international standards of an interconnected world that makes best use of already tested best practices.
Read Post
astra

What is API Security? Types, Challenges, Best Practices

Dec 18, 2024 By Keshav Malik In Astra
In the rapidly changing field of software development, application programming interfaces (APIs) are very powerful tools. They allow different applications to communicate, share data, and collaborate seamlessly, constituting approximately 71% of all web traffic. However, as APIs become more essential to our applications, they also attract cyber threats. In fact, 57% of organizations reported experiencing at least one API-related data breach in the past two years.
Read Post
knowbe4

Phishing Campaign Targets YouTube Creators

Dec 18, 2024 By Stu Sjouwerman In KnowBe4
An email phishing campaign is targeting popular YouTube creators with phony collaboration offers, according to researchers at CloudSEK. The emails contain OneDrive links designed to trick users into installing malware. “The malware is hidden within attachments such as Word documents, PDFs, or Excel files, often masquerading as promotional materials, contracts, or business proposals,” the researchers explain.
Read Post
netacea

Scalper Bot Targets Christmas 2024: Criminal Groups Cash in on Low-Value Items

Dec 18, 2024 By Alex McConnell In Netacea
In 2020, scalper bots made headlines by hoarding PlayStation 5 consoles. Lockdowns and online-only sales allowed bots to dominate the market, leaving frustrated consumers empty-handed. Today, scalper bots are even more dangerous. Criminal groups behind these operations have evolved. They are organized, professional, and focused on more sustainable targets: low-value items in massive quantities.
Read Post

Falcon Cloud Security Application Security Posture Management: Demo Drill Down

Dec 18, 2024 By CrowdStrike In CrowdStrike
Protecting your software from adversaries requires a precise understanding of production. Watch how Falcon ASPM empowers security teams to stop adversaries from breaching their custom applications. CrowdStrike Falcon ASPM: Prioritize and mitigate cloud threats with unmatched application visibility and business context. Subscribe and Stay Updated: ► Don't miss out on more exciting content! Subscribe to our channel for the latest updates, case studies, and more from the world of cybersecurity. Hit the bell icon to receive notifications whenever we post new videos.
View Video

Acronis True Image - The Only Secure Backup Enhanced with Integrated Protection

Dec 18, 2024 By Acronis In Acronis
We’ve all heard it: “It’s not if something will happen, but when.” The question is, are you ready? With Acronis True Image, you already have the tools to protect your digital life — now let’s take it to the next level. Home computers must be protected against multiple cyberthreats — including system failure and malicious hackers. With Acronis True Image, you can completely protect your home and home office environments with one simple tool. Designed for today’s threat landscape, Acronis True Image is the most reliable, efficient, and easy way to protect and manage your computers, mobile devices and digital life.
View Video
Subscribe to Security

Copyright © 2026 OpsMatters™. All rights reserved.