Mailchimp
Not subscribed to OpsMatters Newsletter
Security | Threat Detection | Cyberattacks | DevSecOps | Compliance
The Latest Cybersecurity News & Insights From Around The World
Latest posts
The Polar Bear in Your Kitchen: A Cybersecurity Analogy
Imagine for a moment that your home has a rodent problem. To address this, you install a fancy system designed to automatically detect and trap animals before they can roam around your house and cause any damage. The system seems to work well; from time to time, you arrive home to find a mouse or a squirrel caught by the device. No big deal, right? Lots of small critters about and the system is working as designed to catch them.
How To Hunt Insider Threats
An insider threat occurs when a legitimate user of an organization’s systems intentionally or accidentally puts the organization’s data at risk. These threats can have a devastating impact on a company’s data, reputation, and bottom line. Insider threat hunting has become essential to proactively identify and mitigate these risks before they escalate into full-blown security incidents.
Elastic: Revealing the threat landscape: 2024 Elastic Global Threat Report
Keeping up with the threat landscape is crucial for every security team, but that becomes challenging in a space that's always evolving. The Elastic Global Threat Report provides valuable insights on the past year's unique telemetry gathered from ~1 billion data points. Hosted by experts and industry veterans, this webinar dives into the major findings from the 2024 Elastic Global Threat Report.
1Password: Managing Shadow IT: Mitigating security risk and ensuring compliance
Have you ever encountered a system on your network without knowing who owns it? You may also have virtual machines running with an unknown purpose. In today's world of hybrid work - digital transformation dictates enterprises operations. However, this shift also increases instances of shadow IT - technologies and systems deployed without explicit organizational approval. This opens up your organization to security and compliance risks.
Nucleus: Predictive Vulnerability Management: Operationalizing EPSS with Business Context
As risk-based vulnerability management programs evolve, the focus transitions from understanding current exploits to anticipating future threats. The Exploit Prediction Scoring System (EPSS) addresses this forward-looking approach by estimating the likelihood of software vulnerabilities being exploited using probability and machine learning. However, setting an EPSS threshold based solely on risk tolerance offers only a global prediction. To maximize the effectiveness of EPSS, it is crucial to integrate this threshold with your organization's specific context.
Leverage GSMA compliance to drive secure firewall configurations with Firewall Analyzer
The GSM Association, which stands for the Global System for Mobile Communications Association and is known more commonly as the GSMA, developed the Security Accreditation Scheme (SAS), a security standard and audit-based certification program that addresses various aspects of eSIM production and management. ManageEngine Firewall Analyzer now supports GSMA compliance for mobile operators and companies within the mobile ecosystem.
What is response rate limiting? How does it help in securing your critical network infrastructure?
Organizations often face different forms of cyberthreats and cyberattacks, and attackers try to get their hands on confidential data which would result in major loss of reputation, customer’s information, etc. So, organizations should implement networking tools to secure their data.
CCRI renamed Cyber Operational Readiness Assessment (CORA)
The Command Cyber Readiness Inspection(CCRI) is a comprehensive cybersecurity evaluation and assessment conducted by the United States Department of Defense (DoD). A CCRI serves as a formal inspection aimed at enhancing accountability and bolstering the security posture of DoD Information Networks in alignment with DoD standards, with a specific focus on Command, Mission, Threat, and Vulnerability.
Top 7 Practices to Prevent Data Leakage through ChatGPT
Generative AI (GenAI) tools like ChatGPT have already become indispensable across organizations worldwide. CEOs are particularly enthusiastic about GenAI’s ability to let employees “do more with less”. According to the McKinsey Global Survey on the State of AI in 2024, 65% of organizations already use GenAI tools extensively, and Gartner forecasts that this number will reach 80% by 2026.
Time is of the Essence: Shrinking MTTR in API Security
In the fast-paced world of cybersecurity, every second counts. When an API attack occurs, the speed at which your security team can detect, understand, and respond to the threat can mean the difference between a minor incident and a major data breach. This is where Mean Time to Resolve (MTTR) comes into play. MTTR is a key performance indicator (KPI) that measures the average time it takes to resolve a security incident, from the moment it's detected to the point where it's fully mitigated.