Mailchimp
Not subscribed to OpsMatters Newsletter
Security | Threat Detection | Cyberattacks | DevSecOps | Compliance
The Latest Cybersecurity News & Insights From Around The World
Latest posts
UEBA Superpowers: Enhance Security Visibility with Rich Insights to Take Rapid Action Against Threats
As the cybersecurity landscape continually evolves, SOCs must quickly identify, evaluate, and counteract cyberattacks. In the heat of a security investigation or incident response, achieving rapid visibility and rich contextual insights about the attack are not merely advantageous, but essential.
Phishing Deception - Suspended Domains Reveal Malicious Payload for Latin American Region
Recently, we observed a phishing campaign targeting the Latin American region. The phishing email contained a ZIP file attachment that when extracted reveals an HTML file that leads to a malicious file download posing as an invoice. Figure 1. Phishing email sample with zip file attachment Upon checking the email header, we see that it has an email address format that uses the domain ‘temporarylink’.
What Is An On-Path Attack and How Does It Work?
Suppose someone left their home, got in their car, and drove to the grocery store. Much like data packets that travel over Internet highways, the car will use various pathways to reach its destination; however, once the car gets to the store, a question remains: what happened between the generating point and the destination? If nothing happened, the driver (our data) traveled safely and without incident.
Seven Best Practices for Privileged Access Management
Privileged Access Management (PAM) protects an organization’s most critical systems and accounts from unauthorized access, making it important to have a good PAM strategy in place. Some of the best practices to develop a good PAM strategy include implementing least privilege access, monitoring privileged accounts, adopting password security best practices, requiring multi-factor authentication and auditing privileges regularly.
What is Bait and Switch Scams: How it Works and How to Avoid It
Ever follow an ad featuring limited-time products to a company’s web page only to find they’re selling something else entirely? Or have you added a product to a cart only to discover a laundry list of issues, from poor quality to endless fees? Bait and switch (also called “bait-and-switch” or “B&S”) is a classification of fraudulent activities that most recognize as false advertising.
CMMC vs NIST 800-171
January 2020 is when the Department of Defense (DoD) released the Cyber Maturity Model Certification (CMMC) framework, aimed at evaluating and strengthening the cybersecurity readiness of the Defense Industrial Base (DIB). As per the DoD’s directive, all prime contractors and subcontractors within the supply chain must undergo auditing and certification under the CMMC framework.
Scaling community transactions: inside Mosea's growth strategy - Personally S02E05
Welcome to Personally, a Persona’s community podcast where we explore the innovative solutions driving today's startups. In today’s episode, Ed Giansante will sit down with Luke de Haas from Mosea - a fintech company at the forefront of group payments and money collection, about how they're simplifying financial interactions for communities and teams alike. About Persona Persona is a unified identity platform that provides businesses with the building blocks they need to customize verification experiences, while mitigating fraud, and meeting ever-evolving compliance standards.
Graylog: Cyber Defense with MITRE Framework: Insights from Graylog and SOC Prime
In this 30-minute webinar, you will learn how to identify and neutralize threats faster using the SOC Prime Platform with Graylog. Integrating the two solutions gives you a robust foundation for crisis management and resilience against cyber threats.
Corelight: Benchmarking Threat Hunt Readiness
Register today to join us for this live webinar on Tuesday, April 23rd at 10 am GMT / 11 am CET. Many organizations want to start threat hunting but struggle with knowing where to begin, how to measure success, and how to scale an effective program. This presentation draws on the experience of elite hunters and teams around the world and will discuss an actionable threat hunting maturity model and help you prepare for each step of the journey with specific guidance, concrete examples, and sample threat hunts.
Top tips: Watch out for these 4 machine learning risks
Top tips is a weekly column where we highlight what’s trending in the tech world today and list ways to explore these trends. This week, we’re looking at four machine learning-related risks to watch out for. Machine learning (ML) is truly mind-blowing tech. The very fact that we’ve been able to develop AI models that are capable of learning and improving over time is remarkable.