Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

alienvault

PCI DSS and penetration testing

Feb 5, 2024 By Clint Harris In AT&T Cybersecurity
PCI DSS (Payment Card Industry Data Security Standard) is a set of security controls created to ensure all companies that accept, process, store or transmit credit card data maintain an audit-ready environment. Version 4.0 was published in March 2022; organizations required to be compliant have until March 31, 2024, when compliance must be complete.
Read Post

Securing Database Access: DPA Zero Standing Privilege Approach with Native HeidiSQL Utility

Feb 5, 2024 By CyberArk In CyberArk
In this video, we'll guide you through the process of utilizing CyberArk DPA's capabilities to seamlessly connect to a Postgres database using the HeidiSQL client, leveraging the secure foundation of JIT access approach for enhanced security and efficiency.
View Video

CyberArk Endpoint Privilege Manager & ServiceNow Integration

Feb 5, 2024 By CyberArk In CyberArk
In this video, we delve into the seamless integration of CyberArk Endpoint Privilege Manager and ServiceNow IT Service Management. Discover how this integration streamlines and automates end user privilege elevation requests by leveraging existing ServiceNow workflows. By enhancing security measures and operational efficiency, this collaboration between CyberArk and ServiceNow marks a significant advancement in managing and securing privileged access. Watch now to learn more about this powerful integration.
View Video
knowbe4

Social Engineering Masterstroke: How Deepfake CFO Duped a Firm out of $25 Million

Feb 5, 2024 By Stu Sjouwerman In KnowBe4
Check out this one line for a moment...“duped into attending a video call with what he thought were several other members of staff, but all of whom were in fact deepfake recreations.” In a worrying display of social engineering sophistication, a multinational company was defrauded of $25 million through an intricately planned deepfake scam.
Read Post
gitguardian

Pulumi VS Terraform: The Definitive Guide to Choosing Your IaC Tool

Feb 5, 2024 By Guest Expert In GitGuardian
In the cloud-native era, Infrastructure as Code (IaC; read more about it in this blog here) has become the de-facto standard for managing cloud infrastructure, and more. While Terraform has been around for almost a decade, and it had been the one-and-only cloud-agnostic option for a couple of years before competitors emerged, now the landscape is a whole lot more diverse: we've got AWS CDK, CDK for Terraform, and there is a relatively new kid on the block: Pulumi.
Read Post
CrowdStrike

CrowdStrike Defends Against Azure Cross-Tenant Synchronization Attacks

Feb 5, 2024 By Manoj Ahuje - Matt Johnston In CrowdStrike
As Microsoft Azure continues to gain market share in the cloud infrastructure space, it has garnered attention from adversaries ranging from hacktivist and eCrime threat actors to nation-state adversaries. Recent attacks on Microsoft by cloud-focused threat actors like COZY BEAR are becoming more frequent and garnering huge attention.
Read Post
Snyk

10 GitHub Security Best Practices

Feb 5, 2024 By Simon Maple In Snyk
The security landscape is constantly changing. As such, this blog has been updated to reflect the risks developers and security teams face today and how to overcome them. In our rapidly advancing, code-dominated digital landscape, safeguarding your codebase takes center stage. GitHub is the go-to platform for code sharing and version control in the developer community. However, given its widespread adoption, GitHub is not immune to many of the security challenges that developers face daily.
Read Post

Cloudflare breach - How the Okta attack led to Cloudflare systems getting hacked: Breach Breakdown

Feb 5, 2024 By GitGuardian In GitGuardian
In this video, we drill down into the recent breach of Cloudflare systems including how attackers were able to use stolen credentials from the Okta attack to move laterally and hack the Cloudflare internal Atlassian server. The security incident shows the dangers of secrets sprawl not only in internal systems but also in the supply chain leading to potential data leaks.
View Video

Copyright © 2026 OpsMatters™. All rights reserved.