%term

GigaOm Declares Torq the Autonomous SOC Leader, Dramatically Outpacing Legacy Vendors

Oct 29, 2024 By Torq In Torq

GigaOm provides technical, operational, and business advice for IT’s strategic digital enterprise and business initiatives. GigaOm applies proven research and methodologies designed to avoid pitfalls and roadblocks while balancing risk and innovation, empowering enterprises to successfully compete in a changing business atmosphere. GigaOm recognizes Torq as the only Hyperautomation vendor capable of delivering true autonomy to the SOC without vendor lock-in.

Read Post

Torq

Read more about GigaOm Declares Torq the Autonomous SOC Leader, Dramatically Outpacing Legacy Vendors

Lessons from the Cisco Data Breach-The Importance of Comprehensive API Security

Oct 29, 2024 By Eric Schwake In Salt Security

In the wake of Cisco’s recent data breach involving exposed API tokens - amongst other sensitive information - the cybersecurity community is reminded once again of the significant risks associated with unsecured APIs. Though Cisco has asserted that the damage was limited to a public-facing environment, such breaches demand a more cautious evaluation. Exposing sensitive information like API tokens, credentials, and even source code can have broader security implications than initially apparent.

Read Post

Salt Security

Read more about Lessons from the Cisco Data Breach-The Importance of Comprehensive API Security

Celebrating our recent win in the 2025 TrustRadius Buyer's Choice!

Oct 29, 2024 By The Editor In WatchGuard

We’re thrilled to announce that we’ve been honored with the prestigious 2025 TrustRadius Buyer's Choice! This recognition is a testament to the hard work and dedication of WatchGuard’s team and validates our focus on product innovation and ongoing commitment to simplifying security for partners and customers.

Read Post

WatchGuard

Read more about Celebrating our recent win in the 2025 TrustRadius Buyer's Choice!

Understanding CVE-2024-47176: Mitigating CUPS Vulnerabilities

Oct 29, 2024 By UpGuard Team In UpGuard

The Common UNIX Printing System (CUPS) is a widely used printing system on Unix-like operating systems, but recent vulnerabilities have exposed significant risks. The most critical is CVE-2024-47176, which affects the cups-browsed service by binding to the IP address INADDR_ANY:631. This configuration flaw causes it to trust all incoming packets, leading to potential remote code execution when interacting with malicious printers. This vulnerability is part of a chain of exploits, including.

Read Post

UpGuard

Read more about Understanding CVE-2024-47176: Mitigating CUPS Vulnerabilities

The FortiManager RCE Vulnerability - The 443 Podcast - Episode 311

Oct 29, 2024 By WatchGuard In WatchGuard

This week on the podcast, we review Fortinet's recently-disclosed remote code execution vulnerability in the FortiManager system that has been under active exploit since at least June. After that, we discuss the SEC's recent action against 4 companies found at fault for misleading security incident disclosure statements. The 443 Security Simplified is a weekly podcast that gets inside the minds of leading white-hat hackers and security researchers, covering the latest cybersecurity headlines and trends.

View Video

WatchGuard

Read more about The FortiManager RCE Vulnerability - The 443 Podcast - Episode 311

What's New with the TSA's Oil and Gas Security Directives?

Oct 29, 2024 By Michael Betti In Tripwire

In recent years, the security of the United States' critical infrastructure has become a pressing concern, particularly in the oil and gas sector, due to its pivotal role in the nation's economy and energy supply. Recognizing this, the Transportation Security Administration (TSA) implements several new directives in July each year aimed at enhancing the security and resilience of vital energy infrastructure against various threats, including cyber-attacks and physical disruptions.

Read Post

Tripwire

Read more about What's New with the TSA's Oil and Gas Security Directives?

CIS Control 15: Service Provider Management

Oct 29, 2024 By Matthew Jerzewski In Tripwire

Enterprises today rely on partners and vendors to help manage their data. Some companies depend on third-party infrastructure for day-to-day operations, so understanding the regulations and protection standards that a service provider is promising to uphold is very important.

Read Post

Tripwire

Read more about CIS Control 15: Service Provider Management

Trustwave SpiderLabs 2024 Trustwave Risk Radar Report: Defining the Cyber Assault on the Retail Sector

Oct 29, 2024 By Trustwave In Trustwave

The holiday shopping season is almost here, and according to the 2024 Trustwave Risk Radar Report: Retail Sector, threat actors have honed their skills and are prepared to use ransomware and phishing attacks that leverage well-known online brands to conduct direct attacks and fraud operations against retailers and consumers. Skills they will then use to infiltrate retail organizations of all types throughout the rest of the year.

Read Post

Trustwave

Read more about Trustwave SpiderLabs 2024 Trustwave Risk Radar Report: Defining the Cyber Assault on the Retail Sector

Kirill Yurovskiy: Tame That Tipsy Bookcase

Oct 29, 2024 By SecuritySenses In SecuritySenses

Master Kirill Yurovskiy's ultimate guide to fixing a wobbly bookcase. Learn pro tips and techniques to stabilize your shelves like a true handyman. Conquer DIY challenges with confidence!

Read Post

SecuritySenses

Read more about Kirill Yurovskiy: Tame That Tipsy Bookcase

Leveraging Cloud Solutions in Data Engineering: Trends and Best Practices

Oct 29, 2024 By SecuritySenses In SecuritySenses

Explore the latest trends and best practices in cloud-based data engineering, from data warehouse to data lake migration to automation, cost optimization, and security.

Read Post