%term

Suffolk University Breach Exposes Student Social Security Numbers and More

Jun 2, 2023 By Steven In IDStrong

Suffolk University is a private research university located near Boston, Massachusetts. The school serves over 7,500 students each year and offers more than 100 undergrad, professional, and graduate programs. A huge number of students submit data for financial aid, tuition, and more, and that data could be at risk at a school that doesn't secure its data well. The school earns more than $118 million in revenue annually.

Read Post

IDStrong

Read more about Suffolk University Breach Exposes Student Social Security Numbers and More

Zero Trust: The Case for Just-in-Time Access

Jun 2, 2023 By Martin Cannard In Netwrix

Traditional IT security models focused on one thing: keeping the bad guys out the network. Anyone inside the network was physically in the corporate office and logged on to a machine set up and managed by the IT team, so they were trusted implicitly. That model no longer works. Today’s world of cloud resources, remote workers and user-owned devices has blurred if not entirely erased the notion of a network perimeter that could be defended.

Read Post

Netwrix

Read more about Zero Trust: The Case for Just-in-Time Access

Weekly Cybersecurity Recap June 2

Jun 2, 2023 By Steven In IDStrong

High-profile companies, government agencies, healthcare companies, and government contractors were all exposed in data breaches this week. Tesla is one of the biggest companies to suffer from a breach this week, but the US Marine Corps, ABB, Apria Healthcare, and Suffolk University were also hit by ransomware gangs and targeted hackers. Get the details about these attacks below and stay up-to-date on any breaches that might impact you or your loved ones.

Read Post

IDStrong

Read more about Weekly Cybersecurity Recap June 2

IaC Scanning with ggshield - GitGuardian CLI

Jun 2, 2023 By GitGuardian In GitGuardian

How are you scanning for configuration issues in your Terraform projects? Using ggshield, the GitGuardian CLI, developers can quickly find and fix over 70 common vulnerabilities in their infrastructure as code projects.

View Video

GitGuardian

Read more about IaC Scanning with ggshield - GitGuardian CLI

You're probably not a target but staying aware is crucial! #spyware #malware #cybersecurity #hacker

Jun 2, 2023 By IDStrong In IDStrong

View Video

IDStrong

Read more about You're probably not a target but staying aware is crucial! #spyware #malware #cybersecurity #hacker

Customize Your GitGuardian Remediation Workflow

Jun 2, 2023 By GitGuardian In GitGuardian

Have you ever wished you could customize the remediation workflow in your GitGuardian workspace? Now, you can! As a workspace Manager, you can manage the remediation workflow in the Secrets detection section of your settings and add up to 20 steps. You can also switch between the default GitGuardian remediation workflow and your custom remediation workflow.

View Video

GitGuardian

Read more about Customize Your GitGuardian Remediation Workflow

More Network Security Monitoring Tools Doesn't Mean More Visibility

Jun 2, 2023 By Kaitlyn Graham In BitSight

Network security monitoring tools are a critical component of any IT security toolkit. These tools help protect your network from online threats by looking for weaknesses and potential dangers in your organization's digital properties. But as digital ecosystems have expanded into the cloud, remote locations, and across geographies – the number of monitoring tools has skyrocketed.

Read Post

BitSight

Read more about More Network Security Monitoring Tools Doesn't Mean More Visibility

Automating incident Remediation with GitGuardian Playbooks

Jun 2, 2023 By GitGuardian In GitGuardian

GitGuardian can help automate your incident remediation process through our playbooks! The auto-healing playbook automates sharing the incident with the developer involved. Whenever a new incident is detected, GitGuardian automatically turns on the sharing option of the incident and, in most cases, sends an email with the unique link to the developer involved.

View Video

GitGuardian

Read more about Automating incident Remediation with GitGuardian Playbooks

Trustwave Action Response: Zero Day Exploitation of MOVEit (CVE-2023-34362)

Jun 2, 2023 By Karl Sigler In Trustwave

On May 31, threat actors were discovered targeting a critical zero day in MOVEit Transfer software resulting in escalated privileges and unauthorized data access. The vulnerability being exploited is an SQL injection and has since been patched. Resources links, including one for the patch, are at the bottom of this post. MOVEit Transfer is a managed file transfer (MFT) solution developed by Ipswitch (a subsidiary of Progress Software).

Read Post

Trustwave

Read more about Trustwave Action Response: Zero Day Exploitation of MOVEit (CVE-2023-34362)

SIEM and UEBA: A Match Made in Cybersecurity Heaven

Jun 2, 2023 By Logsign Team In Logsign

SIEM and UEBA are complementary solutions that can work together to provide a comprehensive view of network activity and enhance the threat detection and response capabilities of cybersecurity teams. By integrating SIEM and UEBA, organizations can benefit from.

Read Post