Mapping the MITRE ATT&CK Framework to API Security

Apr 7, 2023 By Salt Security In Salt Security
APIs have emerged as the leading attack vector and attack surface most targeted by cybercriminals. That's why it's important to understand the tactics and techniques used by attackers while they're targeting APIs. In this video, we help you achieve this level of understanding by mapping the MITRE ATT&CK framework to API security attacks.
View Video
upguard

What is NIST 800-161? Guide & Compliance Tips

Apr 7, 2023 By Kyle Chin In UpGuard
NIST 800-161 — also identified as NIST Special Publication (SP) 800-161 — was published in April 2015 as Supply Chain Risk Management Practices for Federal Information Systems and Organizations. In May 2022, a year after President Biden’s Executive Order on Improving the Nation’s Cybersecurity, NIST produced a revised version, NIST 800-161 rev. 1 Cybersecurity Supply Chain Risk Management Practices for Systems and Organizations.
Read Post

Penetration Testing | Finding Skeletons Make You Stronger

Apr 7, 2023 By Razorthorn In Razorthorn
Are you conducting regular penetration testing on your organization's security measures? If so, you might be missing out on a crucial step that could make you even stronger. In this video, cybersecurity expert Megan Brown shares her insights on why it's essential to proactively seek out and address any potential gaps in your security measures. As Megan explains, knowing where the bodies are - where the bones are buried - can help you identify areas of weakness and take action before they become a major issue. So why wait until it's too late?
View Video
splunk

The Credential Stuffing Guide: How To See & Stop Credential Stuffing Attacks

Apr 7, 2023 By Kayly Lange In Splunk
What do cybercriminals do with the information they obtain during a data breach? Most of the time, it results in credential stuffing. Credential stuffing is a cyberattack where criminals systematically use stolen data to test usernames and passwords across multiple online platforms. Bad actors gain access to these accounts for financial gain, identity theft and other malicious purposes.
Read Post
idstrong

Blue Shield of California Suffers a Data Leak Through Vendor Fortra: Over 63,000 Exposed to Breach

Apr 7, 2023 By Steven In IDStrong

Blue Shield of California is one of the largest healthcare providers in the state of California. The health insurance company is nonprofit and delivers insurance to Californians all over the state. Hundreds of thousands of residents rely on the provider for their health insurance, and they trust the company with vast amounts of personal and health information.

Read Post
splunk

The Shared Responsibility Model for Security in The Cloud (IaaS, PaaS & SaaS)

Apr 7, 2023 By Muhammad Raza In Splunk
Cloud security incidents are skyrocketing. In fact, nearly half (45%) of all security incidents target cloud-based services. Another angle: 80% of business organizations experienced at least one cloud security breach incident last year. (Arguably the worst part here is that, when a system is breached, the average dwell time is 9 weeks.) Still, over 72% of businesses plan to continue investing in the cloud. So how do you make cloud computing a secure environment for sensitive business information?
Read Post
idstrong

Common Etsy Scams to Avoid

Apr 7, 2023 By Greg Brown In IDStrong

Etsy, since 2005, has been a marketplace for millions of small business owners, selling everything from jewelry to toys. Without a doubt, an online criminal is lurking around every virtual corner. It is estimated that nearly six to eight million individual shop owners are doing business on the Etsy platform. One of the significant aspects of using Etsy to sell your goods is they offer fraud protection in which they pay for any fraudulent transaction under $250.

Read Post
Subscribe to Security

Copyright © 2026 OpsMatters™. All rights reserved.