Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Snyk

New years resolution: Don't show my security tokens when hacking my demo application on stage

Jan 12, 2022 By Brian Vermeer In Snyk

Traditionally, we start the new year with resolutions. We want to do more good things, like working, other things we try to eliminate. Considering the latter, my 2022 resolution is to stop accidentally exposing confidential information while I hack my application during demos on stage or similar. Yes, this new years resolution sounds very specific, and it has an excellent security horror story behind it…

Read Post
sysdig

Malicious modifications to open source projects affecting thousands - Sysdig Secure

Jan 12, 2022 By Alberto Pellitteri In Sysdig

In the early days of 2022, two extremely popular JavaScript open source packages, colors.js, and faker.js, were modified to the point of being unusable. The reason for this event can be traced to various motivations, but what is worth mentioning is that several applications that employed those dependencies were involved. The two impacted packages can be used for different purposes in JavaScript applications. colors.js enables color and style customization in the node.js console.

Read Post
SecurityScorecard

How to Improve Your Vendor Due Diligence Process (with Security Ratings)

Jan 12, 2022 By SecurityScorecard In SecurityScorecard

You can't do business without your vendors. They support critical elements of your organization, from cloud storage services to payment processing to physical items like office supplies or physical components. Your vendors make your organization run more efficiently – but sometimes at a risk to your financial, reputational and operational resiliency.

Read Post

Search History

Jan 12, 2022 By Egnyte In Egnyte
Easily access your search history to quickly find the Egnyte content you’ve looked for previously. Whether your past search took place on the Web UI, desktop, or mobile, Egnyte remembers past queries and search filters. You’ll be able to quickly review old searches, adjust any previously added filters, and track down the content you need. Locate your files and folders effortlessly using Egnyte’s search history!
View Video

Endpoint Enigma | Is 2022 the Beginning of the End of On-Prem Security?

Jan 12, 2022 By Lookout In Lookout
Nearly two years after we were forced to experiment with remote work, 2022 will be an inflection point for both threats and cybersecurity solutions. Tune into our annual predictions episode to hear what Lookout CTO of SASE Products Sundaram Lakshmanan thinks will happen next year. We'll be discussing everything from software supply chains to threat hunting and data protection.
View Video

Endpoint Enigma | Let's Get Real About Zero Trust: How To Assess Your Security Posture

Jan 12, 2022 By Lookout In Lookout
While most of us understand Zero Trust conceptually, the path to Zero Trust is a complex and constantly evolving journey. In this episode, host Hank Schless is joined by Andy Olpin, Solutions Engineer at Lookout to scale back all the marketing noise surrounding the term and discuss how organizations can pragmatically get started with Zero Trust.
View Video
netskope

Abusing Microsoft Office Using Malicious Web Archive Files

Jan 12, 2022 By Gustavo Palazolo In Netskope

In November of 2021, we described several techniques used by attackers to deliver malware through infected Microsoft Office files. In addition to exploits like CVE-2021-40444, these infected documents frequently abuse VBA (Visual Basic for Applications) to execute their techniques, regardless of the final payload. Attackers also often use extra layers of protection to evade signature-based detections, like constructing PowerShell scripts and WMI namespaces at runtime, as done by Emotet.

Read Post
teleport

Why Financial Services Companies That Value Agility & Security Pick Teleport

Jan 12, 2022 By Josh Smith In Teleport

2022 feels a little different, doesn’t it? Every day I’m prepared to hear something new, something scary, or something exciting. These last couple of years have made it seem like we just never know what is coming next. It’s no different for financial services companies who have to be prepared for the unexpected, including disruptive technologies that can challenge their core businesses.

Read Post
Forward Networks

Confidence In Action: Investment Bank Uses Forward Networks To Verify Automation Software

Jan 12, 2022 By Yadhu Govindarajan In Forward Networks

Several years ago, a global investment bank embarked on an ambitious plan to automate its network configuration deployment process and use internal teams to run all aspects of network operations. The move was made, in part, because of the fluidity of the bank's network, which is constantly undergoing configuration changes.

Read Post

Copyright © 2026 OpsMatters™. All rights reserved.