Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Latest posts

SecurityScorecard

Analysis of CVE-2023-2868 Exploitation: Campaign Targeting U.S. Entities Using Barracuda Email Security Gateway

Jul 14, 2023 By SecurityScorecard In SecurityScorecard

CVE-2023-2868, a vulnerability in the Barracuda ESG was announced on May 23. On June 15th, a report surfaced, attributing the exploitation of this vulnerability to a threat actor group tracked as UNC4841, which analysts believe is conducting espionage on behalf of the Chinese government. SecurityScorecard’s STRIKE Team consulted its datasets to identify possibly affected organizations.

Read Post
Snyk

Top 5 security concerns for infrastructure as code

Jul 14, 2023 By Eric Smalling In Snyk

Infrastructure as code (IaC) has changed how we deploy and manage our cloud infrastructure. Instead of having to manually configure servers and networks with a large operations team, we can now define our service architecture through code. IaC allows us to automate infrastructure deployment, scale our entire fleet of servers, document a history of changes to our architecture, and test incremental changes to the network.

Read Post

The Rising Threat of Cyber Warfare: Protecting Nations and Private Companies

Jul 14, 2023 By Razorthorn In Razorthorn
Join us as we delve into the alarming reality of the Cyber Wolf, an ongoing phenomenon that extends far beyond the conflict in Ukraine. From nation-state actors to various global players, we are witnessing a significant increase in cyber warfare-related attacks and tests worldwide. In this gripping discussion, we explore the pressing question: it's not a matter of if, but when will this happen to us?
View Video

Octiga's New M365 Conditional Access Policy Baselines and Migration Process| Latest Release!

Jul 14, 2023 By Octiga In Octiga
Hey there! In this video, I wanted to update you on the latest release from Octiga. We have introduced new conditional access policy baselines that offer more control over user inclusions, group and role inclusions/exclusions, and the ability to set a generalized template for conditional access policies.
View Video
cyberint logo

Cyberint: The Rise Of Malvertising

Jul 25, 2023
In recent months, threat actors have adopted a new technique for driving traffic to phishing sites: malicious advertisements on search engines and social media platforms. Known as "malvertising," this new technique poses major risks for consumers and businesses alike. Join Cyberint for a webinar on malvertising as Threat Intelligence Team Lead Or Shichrur covers the following topics: Cyberint Threat Intelligence Analyst Yehonatan Wiesel will discuss a recent case study of a malicious ad campaign impersonating a Cyberint customer's brand on major search engine advertising platforms.
View Event
code intelligence

Code Intelligence Finds New Vulnerability in protobufjs: CVE-2023-36665

Jul 13, 2023 By Code Intelligence In Code Intelligence
As part of Code Intelligence's ongoing efforts to improve the security of open-source software it continuously tests open-source projects with its JavaScript fuzzing engine, Jazzer.js, in Google's OSS-Fuzz. Recently Code Intelligence uncovered a new Prototype Pollution vulnerability in protobufjs (CVE-2023-36665) using its newly integrated Prototype Pollution bug detector. The vulnerability puts affected applications at risks of remote code execution and denial of service attacks.
Read Post
manageengine

Top Tips: How hackers use emojis to infect your devices

Jul 13, 2023 By General In ManageEngine

Emojis are now the widely understood language of our digital world.These tiny icons that add color and life to our messages are designed to enhance online interactions by letting us express emotions and thoughts in an easy way. But hackers are seeing them as an opportunity to infect devices and exploit our personal data.

Read Post

Copyright © 2026 OpsMatters™. All rights reserved.