Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

This Is the Reason Behind 70% Of Data Breaches

Mar 14, 2022 By SecurityScorecard In SecurityScorecard
70% of the data breaches involve the negligence of a 3rd party. Let’s understand this with Target’s classic example. In 2013, they were using a contractor, Fazio, to do maintenance of their air conditioning systems. The hackers got into the Fazio systems and used it as a jumping pod to infiltrate and hack into Target’s infrastructure. Big companies like Audi and Volkswagen have also suffered such cyberattacks due to 3rd party negligence.
View Video
alienvault

Top 12 client-side security threats

Mar 14, 2022 By Mike Klepper In AT&T Cybersecurity

Today’s web applications are complex, often made up of a mix of existing software, open-source and third-party code, and custom JavaScript and HTML all integrated via application program interfaces (APIs). While web applications are hosted and maintained on an organization’s server, they actually run on an end user’s browser.

Read Post
teleport

SSH into Docker Container or Use Docker Exec?

Mar 14, 2022 By TK Walsh In Teleport

SSH has always been the default mechanism to get remote shell access into a running Unix or Linux operating system from a terminal client to execute commands. While SSH is familiar, Docker provides more lightweight and easier-to-use methods that don’t require running your container with an SSH server. This post will explore two methods to get shell access into a Docker container using OpenSSH and the docker exec command.

Read Post
1Password

How to manage your company's IT security without stressing out

Mar 14, 2022 By Nick Summers In 1Password

Responsible for keeping your business secure? We know it can feel like a daunting task. After all, the average business has multiple employees using different devices with varying amounts of technological expertise. A single team member might use just one app to stay productive, while another may use 1,000. And they could work in a company-owned location, like an office, or hundreds of places around the world, including their own home.

Read Post
devo

Threat-Based Methodology: An Introduction

Mar 14, 2022 By John Allison In Devo

This three-part blog series will explore threat-based methodology and how it benefits every company with a network. The series leverages the analysis presented by the Federal Risk and Authorization Management Program (FedRAMP) Program Management Office (PMO) in conjunction with the National Institute of Standards and Technology (NIST).

Read Post

Identifying and Avoiding Malicious Packages

Mar 14, 2022 By JFrog In JFrog
Securing your software supply chain is absolutely critical as attackers are getting more sophisticated in their ability to infect software at all stages of the development lifecycle. This webinar, hosted by JFrog Director of Threat Research Jonathan Sar Shalom, will be a technical showcase of the different types of malicious packages that are prevalent today in the PyPI (Python) and npm (Node.js) package repositories. All examples shown in the webinar will be based on real data and malicious packages that were identified and disclosed by the JFrog security research team.
View Video

Hello CISO - Episode 4: Employee Surveillance vs. Enterprise Security

Mar 14, 2022 By 1Password In 1Password
How do you balance data collection at work with workers’ inalienable right to privacy? It's a fine line to walk, but if you always err on the side of employee privacy, it's hard to go wrong. In this episode of Hello CISO, Troy breaks down how to systematize that balance – and how to uncover the hidden costs of data collection. Hello CISO is a new series aimed at Chief Information Security Officers, IT security teams, and all other members of an organization responsible for maintaining the safety and integrity of the business and its operations.
View Video

Copyright © 2026 OpsMatters™. All rights reserved.