Mailchimp
Not subscribed to OpsMatters Newsletter
Security | Threat Detection | Cyberattacks | DevSecOps | Compliance
The Latest Cybersecurity News & Insights From Around The World
Latest posts
What is Attack Surface Management Software?
Attack surface management (ASM) software is a set of automated tools that monitor and manage external digital assets that contain, transmit, or process sensitive data. ASM software identifies misconfigurations and vulnerabilities that cybercriminals could exploit for malicious purposes that result in data breaches or other serious security incidents.
Top 10 Attack Surface Management Software Solutions
Cybercriminals exploit vulnerabilities and misconfigurations across an organization’s attack surface to gain unauthorized access to sensitive data. The prevalence of digital transformation and outsourcing in the current threat landscape means an organization’s attack vectors can easily increase by millions each day. This ever-growing number makes it hard to identify cyber threats and prioritize remediation before a data breach occurs.
11 Cybersecurity investments you can make right now
The average cost of a data breach will continue to rise, which means companies need to start planning accordingly. To protect your business, you need to invest in cybersecurity. Here are 11 areas you should focus on.
Bridging the trust gap in connected supply chains
In these ultra connected times we increasingly need to share data between organizations. But how can you trust data that’s been generated outside your boundary walls? By another organization or a machine? That’s the trust gap, and that’s where RKVST comes in. Instead of bridging that gap with manual processes, verifying and auditing every document, RKVST takes that same risk management approach but automates it so you can trust the data, documents supply chain information at scale.
How zero trust helps reduce risk in connected supply chains
What is zero trust and how does a zero trust approach helps reduce risk in connected supply chain decision making? Find out how RKVST helps automate the tracking and sharing of supply chain evidence you can rely on, by integrating with the tools businesses already use today. Jon Geater and Rob Brown from RKVST discuss zero trust at InfoSecurity Europe, London, June 2022.
RKVST - the Archivist of the modern internet
RKVST (pronounced Archivist) is an evidence platform that delivers a reliable chain of custody for supply chain data. It proves and verifies who did what when to any asset in the supply chain which can then be shared with supply chain partners. Jon Geater , Chief Product Officer, talks about RKVST at InfoSecurity Europe, London, June 2022.
Guacamaya Group
The Guacamaya group is a fairly new hacktivist group based in Latin America. The group was first seen around March 2022 as they released sensitive data of several companies based in Chile, Ecuador, Brazil and Colombia. As mentioned, the group is mainly focusing on LATAM but dabbles every now and then with campaigns in Russia. The group is defined as a data leakage threat group, which means they do not encrypt but only leak the stolen data, often they do it for free.
Insta-Phish-A-Gram
Following Trustwave SpiderLabs’ blog on social media-themed phishing on Facebook, comes another flavor of ‘infringement’ phishing. In this case, the targets, still under the umbrella of Meta, are Instagram users. This theme is not new, and we have seen it from time to time over the last year. It’s the same copyright infringement trickery again, but this time, the attackers gain more personal information from their victims and use evasion techniques to hide phishing URLs.
Web Server Penetration Testing: Definition, Checklist & Tools
As web servers become an increasingly popular target for cybercriminals, it is more important than ever for businesses to ensure that their systems are secure. One of the best ways to do this is through web server penetration testing, which involves simulating a cyberattack to identify vulnerabilities. This blog will introduce web server penetration testing and how to carry it out effectively.
Global Ticketing Giant See Tickets Discloses 2.5 Years-Long Credit Card Data Breach
Read also: Apple fixes yet another iOS zero-day, Iranian atomic energy agency hit by hackers, and more.