Mailchimp
Not subscribed to OpsMatters Newsletter
Security | Threat Detection | Cyberattacks | DevSecOps | Compliance
The Latest Cybersecurity News & Insights From Around The World
Latest posts
The New Frontiers of Cybersecurity - Exponential Increase in Complexity
The New Frontiers of Cybersecurity is a three-part thought-leadership series investigating the big-picture problems within the cybersecurity industry. In the first post, we explored the reasons malicious actors have been able to enhance their ability to execute and profit from attacks. In the second post, we discussed how the massive increase in endpoints and systems online has dramatically increased the attack surface.
Tips for an Effective Vulnerability Assessment
So, you (or your friendly neighborhood MSP) have just finished a vulnerability scan as part of a vulnerability management program and/or in preparation for penetration testing. But one ominous question looms: What next? Sorting through hundreds of thousands of vulnerability logs can be daunting, and determining which ones are worth investigating further is even less of a trivial task.
Find Out What Users Think About KnowBe4
TrustRadius collected live user reviews from Black Hat 2022 on their experience with the KnowBe4 security awareness training and simulated phishing platform. In this short video, users talk through how they use KnowBe4, what the best features are, the return on investment they've had and rate how likely they are to recommend KnowBe4. A de minimus incentive was given to thank the reviewer for their time. The incentive was not used to bias or drive a particular response, nor was the incentive contingent on a positive endorsement.
How SD-WAN and Public Cloud have changed the dynamics when it comes to modern connectivity and infrastructure requirements
Digital and cloud transformation has unlocked new business opportunities and operational efficiencies for organisations. But migration to the cloud also means our approach to deploying applications and services has radically changed, as enterprises move away from traditional data centres. Likewise, flexible working means users have also moved away from traditional offices and branches.
Outpost 24: Account Takeover in Azure's API Management Developer Portal
API Management is a critical component of modern application development. As organizations increasingly rely on APIs to exchange data between systems, they must also consider the potential security risks that come with API usage. In this 30 minute webinar, Outpost24's Thomas Stacey will walk you through a vulnerability he recently discovered in Azure's API Management Developer Portal that can be exploited to perform an account takeover attack. Thomas will be exploring the various steps involved in identifying the vulnerability, disclosure and eventual release of the fix.
Netwrix: To SIEM or not to SIEM: Is there a better way to secure your data?
SIEMs are expensive and notoriously hard to deploy and configure, and they're not nearly as beneficial as they claim to be: Research shows that less than 8% of security breaches are discovered by the victim organisation's SIEM solution. Fortunately, there is a way to make your SIEM more effective, or to simply avoid the cost and effort of deploying one in the first place - with the Netwrix platform.
Cyberint: Webinar: Beyond Your Radar: Uncovering The Full Extent Of Your Attack Surface
In many cases, the external attack surface is thought of as the external IT infrastructure: domains, IP addresses, VPN portals, Internet-facing software and services, and so on. But this understanding of the attack surface overlooks several prominent attack vectors: phishing, leaked credentials, and supply chain attacks. In this webinar, Senior Sales Engineer Gino Rombley will discuss how you can uncover the full extent of your attack surface and detect relevant threats beyond your external IT infrastructure. The following topics will be covered.
TrustCloud Replaces Manual Risk Registers with Programmatic and Predictive Risk Tracking to Reduce Business Liability
New TrustRegister™ application introduces programmatic risk assessments, empowering companies to proactively surface risks and remediation plans, map to customer contracts, and understand potential business impact.
Cato Networks Partners with Infinigate Group
Cato Networks has extended its agreement with Nuvias, part of the Infinigate Group, the value-add distributor of cybersecurity, secure network and secure cloud, adding DACH, Nordic and Benelux to the UK market.
What is XDR? Is the security impact real or hyped?
With so many overlapping and self-serving definitions of XDR (Extended Detection and Response), embracing the innovations in technology first require that we parse the alphabet soup. We agree with several industry analysts covering the space that XDR is a vendor push with no real customer demand, but the problem spaces within XDR are of significant customer interest. Consensus has emerged on a few XDR elements such as: cloud-native/SaaS, improved detection, and improved response.