Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Security

Snyk

Snyk CLI: Introducing Semantic Versioning and release channels

Apr 30, 2024 By Chintan B. In Snyk
We are pleased to introduce Semantic Versioning and release channels to Snyk CLI from v.1.1291.0 onwards. In this blog post, we will share why we are introducing these changes, what problems these changes solve for our customers, and how our customers can opt-in according to their needs.
Read Post
ThreatQuotient

Simplifying Security Workflows with ThreatQuotient Automation

Apr 30, 2024 By Guest Blog In ThreatQuotient
It’s not just about speeding up processes; it’s about efficiency, accuracy, and ultimately, staying one step ahead of threats. At ThreatQuotient, we’re committed to partnering with our customers to harness the power of automation in targeted ways that simplify and streamline workflows for security teams.
Read Post
bitsight

Enabling More Precise Evaluation of Email Security with DMARC

Apr 30, 2024 By Mónica Vale In BitSight
Email is a well-known and widely used attack vector for malware distribution, phishing, and many other types of threats. For this reason, we evaluate certain email security practices as part of the Diligence category of risk vectors used to calculate Bitsight Security Ratings. On April 30, 2024, we added a new email security evaluation focused on the use of Domain-based Message Authentication, Reporting, and Conformance (DMARC) records.
Read Post

Shamane Tan on cyber resilience - Cyber Security Decoded

Apr 30, 2024 By Rubrik In Rubrik
Bouncing back from a cyber incident, data breach or #ransomware attack is a great accomplishment…but how can you bounce forward? A complete Cyber Resilience strategy is mission-critical. Security teams should be proactive and have response plans in place for when #CyberAttacks hit, rather than attempting to prevent attacks from occurring. With a #CyberResilience strategy, your team will be equipped with a plan when a cyber incident occurs while also having tools to identify those malicious attacks before they happen.
View Video
Tines

Afni's Brent Deterding on deploying MFA for 10,000 employees and becoming "the Happy CISO"

Apr 30, 2024 By Thomas Kinsella In Tines
In this week’s episode of The Future of Security Operations podcast, I'm joined by Brent Deterding. Brent has over 25 years of experience in security, both on the vendor side and now as a security leader. He spent a big part of his career with cloud-native security analytics platform SecureWorks, and he’s currently the CISO of Afni, a global provider of contact center solutions in the U.S., Philippines, and Mexico.
Read Post
one identity

Identity risk management: What is it and how can you achieve it?

Apr 30, 2024 By Ted Ernst In One Identity
Risk. It’s more than just an infuriating board game from your childhood. And when identity risk is involved in your cybersecurity landscape – and it will be involved, since identity is one of the most easily accessible and most frequently attacked facets of your IT environment – the potential consequences of its compromise extend well beyond losing control of a fantasy continent on a game board.
Read Post
Corelight

Fuel for Security AI

Apr 30, 2024 By Brian Dye In Corelight
The big idea behind Corelight has always been simple: ground truth is priceless. What really happened, both now and looking back in time. Whether it is used to detect attacks, investigate routine alerts, respond to new vulnerabilities or a full scale incident response, the constant is that ground truth makes everything in security better. We have no claim of authorship here. By contrast, we learn from the world’s most accomplished defenders through their use of Zeek® and Suricata®.
Read Post
wallarm

Introducing the Wallarm Q1 2024 API ThreatStats Report

Apr 30, 2024 By Wallarm In Wallarm
As we have in previous editions of the ThreatStats report, we highlight the industry’s top API-related attacks and trends. New to this version, however, is a detailed analysis of API attacks targeting AI-based applications, representing a new and rapidly expanding threat vector. And while we encourage you to download the full report, here are some key observations about what you’ll find within. API threats to AI applications are clearly on the rise.
Read Post
alienvault

Volatile Data Acquisition from Live Linux Systems: Part I

Apr 30, 2024 By Kushalveer Singh Bachchas In AT&T Cybersecurity
In the domain of digital forensics, volatile data assumes a paramount role, characterized by its ephemeral nature. Analogous to fleeting whispers in a bustling city, volatile data in Linux systems resides transiently within the Random Access Memory (RAM), encapsulating critical system configurations, active network connections, running processes, and traces of user activities. Once a Linux machine powers down, this ephemeral reservoir of information dissipates swiftly, rendering it irretrievable.
Read Post
Subscribe to Security

Copyright © 2024 OpsMatters™. All rights reserved.