Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

manageengine

IT security under attack blog series: Instant domain persistence by registering a rogue domain controller

Nov 24, 2020 By Log360 In ManageEngine

In this blog in the IT security under attack series, we will learn about an advanced Active Directory (AD) domain controller (DC) attack to obtain persistence in AD environments. Dubbed DCShadow, this is a late-stage kill chain attack that allows a threat actor with admin (domain or enterprise admin) credentials to leverage the replication mechanism in AD to register a rogue domain controller in order to inject backdoor changes to an AD domain.

Read Post
alienvault

What is Third-Party Risk Management?

Nov 24, 2020 By Mark Stone In AT&T Cybersecurity

Creating and maintaining relationships with third parties brings about multiple risks. Whether your organization is large or small, it’s almost certain that you have business relationships with many third parties for specific types of operations. When operational data and confidential information are exchanged with third parties, that data and information are vulnerable to misuse and exploitation. This is where risk comes into the equation.

Read Post
styra

Using Open Policy Agent for cloud-native app authorization

Nov 24, 2020 By Tim Hinrichs In Styra

How companies like Netflix, Pinterest, Yelp, Chef, and Atlassian use OPA for ‘who-and what-can-do-what’ application policy. In the cloud-native space, microservice architectures and containers are reshaping the way that enterprises build and deploy applications. They function, in a word, differently than traditional monolithic applications.

Read Post

UpGuard November 2020 product releases and roadmap

Nov 24, 2020 By UpGuard In UpGuard
Keynote address from our Chief Product Officer about this quarter's latest features, and a sneak peek into our February 2021 product launch. UpGuard's integrated risk platform combines third party security ratings, security assessment questionnaires, and threat intelligence capabilities to give businesses a full and comprehensive view of their risk surface. This quarter alone, UpGuard has released over 30 features to the UpGuard platform, including 6 major releases.
View Video

UpGuard Summit opening keynote: Security in 2020

Nov 24, 2020 By UpGuard In UpGuard
UpGuard co-founder and co-CEO, Alan Sharp-Paul shares UpGuard’s journey in the complex year of 2020 and what the shift to remote work means from a security standpoint. UpGuard helps businesses manage cybersecurity risk. UpGuard's integrated risk platform combines third party security ratings, security assessment questionnaires, and threat intelligence capabilities to give businesses a full and comprehensive view of their risk surface.
View Video
netskope

Here Comes 2021: 5 Safe Bets and 5 Long Shot Predictions

Nov 24, 2020 By Jason Clark In Netskope

As we learned in 2020, vendors predict, and the universe laughs. But this year we polled our experts at Netskope to get their view of the year to come. Here’s how we see 2021 shaping up for networking and security, in the form of some pretty safe bets, and some harder calls. As more organizations consolidate and move away from appliance-based security technologies, IT and security teams will realize the cost savings and operational efficiencies the move to cloud brings.

Read Post

Copyright © 2026 OpsMatters™. All rights reserved.