Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

%term

miniorange

Bring Your Own Device (BYOD): Pros & Cons for Businesses in 2025

Nov 29, 2024 By miniOrange In miniOrange
Bring Your Own Device (BYOD) is becoming increasingly popular in workplaces around the world. With the trend of remote and hybrid working gaining grip and employees seeking more work flexibility, the shift to BYOD policies will be eminent in the coming years. Here is what you need to know before incorporating a BYOD policy at work.
Read Post
fidelis security

Building a Resilient Network Defense with Network Based Intrusion Detection Systems

Nov 29, 2024 By Fidelis Security In Fidelis Security
Network based Intrusion Detection System (NIDS) is an important layer of security in the cybersecurity world. It essentially acts as a proactive guard, constantly scrutinizing network traffic activity — watching the data packets that travel across your devices for patterns that suggest signs of unauthorized access and other malicious behavior.
Read Post
ignyte Team

ISO 27001 Certification Expired: Why, and What Can You Do?

Nov 29, 2024 By Max Aulakh In Ignyte
Two years ago, The International Organization for Standardization (ISO) published a long-awaited update to their primary cybersecurity framework, ISO 27001. The previous version, ISO 27001:2013, was nearly a decade old and in need of a refresh. The new version, ISO 27001:2022, is currently the version in effect. As part of the roll-out of ISO 27001:2022, companies were given instructions on how to transition to the new version from the 2013 version.
Read Post
netwrix

A Comprehensive Look into Password Attacks and How to Stop Them

Nov 29, 2024 By Dirk Schrader In Netwrix
There are some things you want to keep private such as your bank account number, government ID number, etc. In the digital age, that includes the passwords that protect these accounts because once your account credentials are compromised, cybercriminals can get that information. That is why password attacks have become so prominent today.
Read Post
calligo

Demystifying EU Regulations: DORA and NIS2 - What They Mean for Your Business

Nov 29, 2024 By Calligo In Calligo
Ahead of the EU’s Digital Operational Resilience Act (DORA) coming into force on 17th January 2025, and on the back of the updated Network and Information Security Directive (NIS2) coming into effect from 17th October of this year, organisations across Europe are scrambling to understand what these regulations mean for them. The initial reaction from many businesses is one of concern, and understandably so, non-compliance can lead to significant penalties and reputational damage.
Read Post

Embracing Conscious Leadership and Generative AI Transformation with Aysha Khan of Treasure Data

Nov 29, 2024 By Rubrik In Rubrik
Welcome to the Data Security Decoded podcast, brought to you by Rubrik Zero Labs. In each episode, we discuss cybersecurity with thought leaders and industry experts, and get their take on trends, themes, and how they see data security evolving. This is a must-listen for security and IT leaders looking to better understand trends shaping data security and how they can achieve cyber resilience.
View Video

Web Shell Upload Via Extension Blacklist Bypass - Part 1

Nov 29, 2024 By VISTA InfoSec In VISTA InfoSec
We delve into an in-depth exploration of a common web security vulnerability related to file uploads and it demonstrates how attackers can exploit weaknesses in file extension blacklists to upload malicious web shells. We also cover the mechanics of bypassing these security measures, including specific techniques and tools used to see practical examples of how to conduct such an attack in a controlled environment, emphasizing the importance of understanding these vulnerabilities for defensive programming.
View Video
foresiet

Salt Typhoon and the T-Mobile Breach: How Chinese Hackers Targeted U.S. Telecom and Political Systems

Nov 29, 2024 By Foresiet In Foresiet
Executive Summary Salt Typhoon, a Chinese state-sponsored hacking group, has emerged as one of the most significant cyber threats to U.S. critical infrastructure. Initially identified in 2020, with increased recognition of their activities in 2021, the group has been linked to high-profile cyber espionage campaigns targeting U.S. telecommunications companies.
Read Post

Copyright © 2024 OpsMatters™. All rights reserved.