Mailchimp
Not subscribed to OpsMatters Newsletter
Security | Threat Detection | Cyberattacks | DevSecOps | Compliance
The Latest Cybersecurity News & Insights From Around The World
Latest posts
AP Stylebook Data Breach Compromises Customer Personal Information
The Associated Press (AP) has disclosed a data breach affecting the legacy AP Stylebook website that led to phishing attacks against impacted customers, BleepingComputer reports. “On July 20, 2023, Stylebooks.com notified us that AP Stylebook customers had received phishing emails directing them to a fake website that imitated AP Stylebook to provide updated credit card information,” the AP said. “APS immediately engaged a cyber forensics firm to investigate the incident.
New Vulnerabilities in Apple Products Exploited in the Wild
On September 7, 2023, Apple released emergency security updates to fix a buffer overflow vulnerability (CVE-2023-41064) and a validation issue vulnerability (CVE-2023-41061) among macOS, iOS, iPadOS, and watchOS products. These vulnerabilities can be exploited with a maliciously crafted attachment or image which leads to arbitrary code execution.
CVE-2023-20269: Cisco ASA/Firepower VPN Zero-Day Vulnerability Actively Exploited
On August 31, 2023, Arctic Wolf sent out a bulletin alerting customers to an ongoing brute force campaign targeting Cisco Adaptive Security Appliance (ASA). Subsequently, on September 6, 2023, Cisco published a security advisory warning of a zero-day vulnerability (CVE-2023-20269) in the remote access VPN feature of Cisco ASA and Cisco Firepower Threat Defense (FTD) Software.
SecurityScorecard Integration with ThreatQ Enhances Your Visibility Into Your Critical Third Parties
With organizations becoming increasingly digitally connected, a lack of visibility into their vendors’ security diligence has made exploiting these relationships a go-to tactic for cybercriminals. Fifty-four percent of publicly reported breaches in the last two years have been due to third parties, vendors, or suppliers, representing one of the greatest cybersecurity risks. Additionally, 98% of organizations have at least one vendor that’s had a breach in the last two years.
Arctic Wolf Offers Canadian Rural Healthcare Network Holistic Security Support
As a rural healthcare network located north of Toronto, Ontario, the employees of Grey Bruce Health Services understand that PHI fetches a high value on the dark web, and that they could be one ransomware attack away from stolen data, or worse, encrypted networks that prevent critical patient care. With Arctic Wolf, including Arctic Wolf Managed Detection and Response and Arctic Wolf Managed Risk, IT Director Liane Coates feels confident and comforted that there’s a protective defensive layer not only monitoring the environment 24x7 but working on vulnerability management and proactive security strategies.
Demo Tuesday
What happens when you are the sole subject matter expert on a part of the network, and something happens to it while you are in the middle of a root canal? Can Forward Enterprise help?
Nightfall Named A Leader in Data Loss Prevention (DLP) by G2
Nightfall has been named as a Leader in Data Loss Prevention (DLP), Sensitive Data Discovery, and Data Security in G2’s Fall ‘23 rankings. We’d like to extend a huge thank you to all the customers and supporters who made this possible. This past season, the Nightfall team has been working tirelessly to innovate new ways to keep customers safe in the cloud.
Importing to Egnyte's eTMF
Importing completed trial data into Egnyte’s eTMF allows you to keep your clinical studies inspection ready at all times!
Johnson and Johnson's Healthcare Service Gets Breached Exposing Many
Johnson and Johnson is a large-scale manufacturing company that provides pharmaceuticals and medical products to companies throughout the world. The organization also makes a variety of consumer products. The massive company has over 130,000 employees and generates over $94 Billion in annual revenue. The huge company suffered a recent data breach that exposed some of its employees via its healthcare services.
Imperva vs. Cloudflare WAF
Cloudflare’s web application firewall (WAF) serves as the central pillar of its advanced application security suite, ensuring the safety and efficiency of applications. Cloudflare’s free plan presents notable benefits for SMEs managing limited traffic and smaller-scale applications.