Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Security

SecurityScorecard

Breaches Happen; Stop Playing the Blaming Game

Dec 16, 2022 By Anna Sarnek, Senior Director, Risk Solutions In SecurityScorecard

A classic cybersecurity storyline: there is executive tension over cybersecurity spending, the company gets breached, and a blame game between the CISO and their peers ensues, resulting in the termination of the CISO as a form of remediation. Reports indicate that only 27% of CISOs stay in their role at a company for three to five years.

Read Post
tripwire

Latest Cyber Guidance for Retailers from NCSC

Dec 16, 2022 By Tripwire Guest Authors In Tripwire

The National Cyber Security Centre (NCSC) recently published important cybersecurity guidance to help protect retailers, which comes right as the holiday shopping season is in full swing. Retail organizations are no strangers to cyber attacks. In fact, some recent large-scale retail industry cyber attacks have included popular brands such as Guess, Under Armour, CVS Health, Home Depot, and Target.

Read Post
netwrix

How NTFS Alternate Data Streams Introduce Security Vulnerability

Dec 16, 2022 By Joe Dibley In Netwrix

You may not be familiar with NTFS file streams, but you use them every day when you access files on any modern Windows system. This blog post explains this feature of NTFS ADS, shows how hackers can exploit file stream functionality in cyberattacks, and offers strategies for defending your organization.

Read Post

Webinar: 2023 Security Predictions - 15 Dec 2022

Dec 16, 2022 By WatchGuard In WatchGuard
Every year, the WatchGuard Threat Lab team likes to dust off the crystal ball and predict the way cyber threats and information security will evolve going forward. Though we base our forecasts on quantifiable trends we’ve seen in the past, we also take the opportunity to extrapolate the more futuristic and dystopian cyber outcomes that might occur if attackers were left unchecked. In the end, our goal is to share how defenders must adjust to ensure we avoid the worst outcomes.
View Video
mend

How to Prepare for the Next Zero-Day Attack

Dec 16, 2022 By Guy Bar-Gil In Mend

Sudden, unexpected, and potentially very damaging. Zero-day attacks are the perfect storm for malicious actors and one of the worst-case scenarios for developers, security professionals, and DevOps teams. Yet it’s not all bad news for those charged with protecting your code, software, and applications, as long as you expect the unexpected and prepare for it. Building a fast, effective mitigation response for zero-day attacks starts with these three tactics.

Read Post

Going Beyond Unit Testing | How to Uncover Blind Spots in your Java Code with Fuzzing

Dec 16, 2022 By Code Intelligence In Code Intelligence
Check out fuzz.ci/cli to try out the tool for yourself! While most Java developers already use unit testing to test whether their application behaves as expected, complementary testing approaches such as fuzz testing enable them to also check their applications for unexpected or strange behaviors that could lead to crashes and make them vulnerable to Denial of Service (Dos) attacks or Zero-Day exploits.
View Video
CrowdStrike

CrowdStrike Expands CrowdStrike Falcon Platform with Industry's Most Complete Adversary-Driven External Attack Surface Management Technology to Minimize Risk from Exposed Assets

Dec 15, 2022 By CrowdStrike In CrowdStrike
CrowdStrike Falcon Surface supercharges CrowdStrike Falcon platform with EASM capabilities for an outside-in and inside-out perspective of the attack surface.
Read Post
Subscribe to Security

Copyright © 2024 OpsMatters™. All rights reserved.