Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Networks

Arctic Wolf

Arctic Wolf Labs Observes Increased Fog and Akira Ransomware Activity Linked to SonicWall SSL VPN

Oct 24, 2024 By Steven Campbell, Akshay Suthar, and Stefan Hostetler In Arctic Wolf
In early August, Arctic Wolf Labs began observing a marked increase in Fog and Akira ransomware intrusions where initial access to victim environments involved the use of SonicWall SSL VPN accounts. Based on victimology data showing a variety of targeted industries and organization sizes, we assess that the intrusions are likely opportunistic, and the threat actors are not targeting a specific set of industries.
Read Post
Arctic Wolf

CVE-2024-47575: Critical Vulnerability in FortiNet FortiManager Under Active Exploitation

Oct 24, 2024 By Andres Ramos In Arctic Wolf
On October 23, 2024, Fortinet published an advisory disclosing an actively exploited vulnerability (CVE-2024-47575) affecting FortiManager and FortiManager Cloud. The critical-severity vulnerability can be exploited on FortiManager instances exposed to the internet via port 541. Successful exploitation could allow a remote, unauthenticated threat actor to execute arbitrary code or commands via specially crafted requests.
Read Post
manageengine

Why is an effective IPAM strategy crucial for enterprise networks?

Oct 23, 2024 By OpUtils In ManageEngine
As businesses expand, their networks become increasingly complex, encompassing on-premises devices, remote workstations, cloud services, and IoT devices. This growth, coupled with rising cloud adoption, puts immense strain on the process of maintaining a stable and secure infrastructure. In today’s hyper-connected world, even a brief network outage or security breach can result in significant financial losses, operational downtime, and reputational damage.
Read Post
safeaeon

External IP Addresses to Include in Pentest: Best Practices for Security Testing

Oct 23, 2024 By SafeAeon Inc. In SafeAeon
Carrying out a pentest correctly is important for finding and fixing security holes in a company. Including useful external IP addresses is an important part of pentesting. Hackers can get into a company's network and possibly take advantage of vulnerabilities by using these addresses as entry points. Companies can make sure their pentests are thorough and useful by carefully choosing and ranking which external IP addresses to test.
Read Post
algosec

A Secure VPC as the Main Pillar of Cloud Security

Oct 23, 2024 By Asher Benbenisty In AlgoSec
In 2019, the Capital One breach led to the exposure of 100 million customers’ personal data due to a misconfigured WAF. The incident ultimately cost Capital One over $270 million in fines and compensation, demonstrating the serious risks inherent in cloud security and highlighting the urgent need for robust security measures. As cloud adoption accelerates, public cloud services spend is expected to jump 20.4% versus 2023, reaching $675.4 billion this year.
Read Post
a10 networks

The Need for Next-Generation Web Application Firewalls (WAFs) in Modern Threat Landscape

Oct 23, 2024 By Jamison Utter In A10 Networks
In today’s ever-evolving threat landscape, organizations face numerous security challenges that necessitate a shift from traditional web application firewalls (WAFs) to next-generation solutions. This article aims to highlight the failures of traditional WAFs, contrast them with the capabilities of next-gen WAFs, and emphasize the crucial need for API security in the current digital ecosystem.
Read Post
securitysenses

Convert Mbps to Gbps: The Ultimate Guide to Data Rate Conversions

Oct 23, 2024 By SecuritySenses In SecuritySenses
A megabit is denoted as Mib and is also referred to in terms of mbps, meaning a megabyte. When dealing with computer networks, understanding the data transfer rating or speed becomes important in practice, such as megs Mbps. Most commonly, one megabit represents a million bits, which is the smallest unit in computing that is able to store data In most cases, Mbps is defined when the speed of the connection to the Internet is measured. The Mbps can also be described in more detail as the indicator which tells us what is the level of data transfer for every second.
Read Post
CrowdStrike

CrowdStrike + Fortinet: Unifying AI-Native Endpoint and Next-Gen Firewall Protection

Oct 22, 2024 By Chris Stewart In CrowdStrike
In today’s fast-evolving cybersecurity landscape, organizations face an increasing barrage of sophisticated threats targeting endpoints, networks and every layer in between. CrowdStrike and Fortinet have formed a powerful partnership to deliver industry-leading protection from endpoint to firewall.
Read Post
indusface

What is a Reverse Proxy, How Does it Work, and What are its Benefits?

Oct 21, 2024 By Vinugayathri Chinnasamy In Indusface
A reverse proxy is a server that sits between the client and the origin server. It accepts requests from clients and forwards them to the appropriate server. It also receives responses from the server and sends them back to the client. A reverse proxy is an essential component of web application infrastructure, providing a layer of abstraction between clients and origin servers to help optimize traffic routing and improve performance and security.
Read Post

Copyright © 2024 OpsMatters™. All rights reserved.