Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Ep 3 Frank W, Rich W, Kevin P - Securing the Digital Supply Chain

Jan 22, 2022 By Riscosity In Riscosity
Securing the supply chain Ep. 3 - An amazing cast of security thought leaders - Rich Watson, Frank Weigel and Kevin Paige - 3 stellar security leaders who have an immense amount of experience in all sorts of companies and security program. We touch on FDIC, FIL guidance, GDPR impact, SDKs Ruby, Gems and oh so more!
View Video
manageengine

Saudi Aramco data breach: A reminder to start monitoring RPIs

Jan 21, 2022 By IT Security In ManageEngine

On June 23, 2021, threat actors reported that they had stolen a terabyte of data from Saudi Aramco, a state-owned oil company in Saudi Arabia. The threat actors released samples of data they had procured after redacting critical information. They also claimed to have detailed information on Aramco’s employees, such as their full names, photographs, passport scans, emails, phone numbers, residence permit (Iqama card) numbers, job titles, employee ID numbers, and family information.

Read Post

Detectify, an ethical hacker powered EASM solution.

Jan 21, 2022 By Detectify In Detectify
Hacking yourself is the only way to protect your attack surface Explore the full breadth and depth of your external attack surface with Detectify. Find out what Internet-facing assets you're exposing, how to fix their vulnerabilities and anomalies, and accurate guidance on what you should improve and prioritize first.
View Video
bulletproof

Cyber Essentials Update 2022 - what you need to know

Jan 21, 2022 By Nicky Whiting In Bulletproof

In what is being described as the most significant update to the scheme since it launched in 2014, the National Cyber Security Centre (NCSC) has announced that the technical controls for Cyber Essentials and Cyber Essentials Plus will be updated as of 24th January 2022. The change is to bring the scheme in-line with the evolving cyber security challenges that organisations now face, particularly around the adoption of cloud services and hybrid working.

Read Post
CrowdStrike

Better Together: The Power of Managed Cybersecurity Services in the Face of Pressing Global Security Challenges

Jan 21, 2022 By Falcon OverWatch and Falcon Complete teams In CrowdStrike

The results from the 2021 Global Security Attitude Survey paint a bleak picture of how organizations globally are feeling about the cybersecurity landscape before them. Organizations are grappling with shortages of cybersecurity skills and a lack of capability to detect and contain intrusions in a timely way.

Read Post
sysdig

CVE-2022-0185: Detecting and mitigating Linux Kernel vulnerability causing container escape

Jan 21, 2022 By Michael Clark In Sysdig

This week, Linux maintainers and vendors disclosed a heap overflow vulnerability in the Linux Kernel. The vulnerability has been issued a Common Vulnerability and Exposures ID of CVE-2022-0185 and is rated as a High (7.8) severity. The flaw occurs in the Filesystem Context system when handling legacy parameters. An attacker can leverage this flaw to cause a DDoS, escape container environments, and elevate privileges.

Read Post

Copyright © 2026 OpsMatters™. All rights reserved.