Mailchimp
Not subscribed to OpsMatters Newsletter
Security | Threat Detection | Cyberattacks | DevSecOps | Compliance
The Latest Cybersecurity News & Insights From Around The World
opsdemon
Latest posts
Secure your container images with signature verification
The use of version control systems, continuous integration (CI), container services, and other tools in software development have enabled developers to ship code more quickly and efficiently. However, as organizations expand their build and packaging ecosystems, they also increase the number of entry points for malicious code injections that can ultimately make their way to production environments.
Why Tanium is a Leader in GigaOm's New Patch Management Report for 2024
Patch management is an essential prerequisite for continuous cyber risk mitigation. But it’s not getting any easier. That makes finding the right security partner an essential task for any IT operations leader. But this, too, is fraught with difficulty in a market saturated with vendors. This is where independent market analysis can be invaluable.
Securing the Future of Automotive Cybersecurity: The Past, Present, and Future of IoT/OT Security
The landscape of connected vehicles is evolving at a breakneck pace. From software-defined vehicles (SDVs) to autonomous driving, the automotive industry has become a nexus for innovation and vulnerability. As Ran Ish-Shalom, Chief Product Officer at Argus Cyber Security, aptly stated during a recent session: Brian Carpenter from CyberArk reinforced this, emphasising the growing complexity of managing identities across both human and machine ecosystems.
Announcing the Fireblocks MPC-BAM Protocol
The Fireblocks Cryptography Research Team has developed MPC-BAM, a new two-party ECDSA MPC protocol that achieves an ideal balance among the three key efficiency metrics in cryptographic protocols: rounds, communication, and computation. Multi-party computation (MPC) cryptography protocols are critical for the decentralized finance (DeFi) ecosystem as they enhance security and privacy while allowing direct custody operations.
Enhancing Security in Low-Code Development: Tools and Techniques
Low-code development platforms have revolutionized the way organizations build and deploy applications by enabling rapid innovation and empowering citizen developers. However, this democratization of app creation brings new security challenges that traditional security approaches struggle to address. As businesses increasingly rely on low-code solutions, automating security becomes crucial to maintain an adequate defense against evolving threats.
Introducing Fireblocks Key Link: A Seamless Integration for Existing Key Management Solutions
For digital asset businesses, the increased clarity in the global regulatory landscape, driven by frameworks like MiCA and DORA in the EU and from the Hong Kong SFC and Monetary Authority, has been a welcome evolution. It also means that internal and external compliance requirements are growing more complex to manage as digital asset businesses consider expansion strategies and the need to streamline operational plans.
Baking a SIEM: A Recipe for Graylog Open to Security and Beyond
Aspire Bakeries' Graylog journey began in mid-2017 when we realized the current method of log review/collection on each device wasn’t working for us in Operations and we needed better way of working. Over the years we have grown our Graylog implementation from a single Graylog Open 2.0 VM for Operations Teams to a multi-node cluster handling 100MM+ messages per day and the center of our SOC.
Things to do before you switch audit firms | TrustTalks - Ep 4 | Security and GRC Podcast
Switching audit firms is not just a routine decision; it’s a strategic move that can significantly impact your business’s financial health and compliance. Whether you’re dissatisfied with your current auditor’s performance, seeking specialized expertise, or looking to cut costs, making the switch can offer numerous benefits and challenges. In this podcast, we’ll explore what happens when you switch audit firms, including the steps involved, potential risks, and key considerations to ensure a smooth transition.
IoT/OT Security: From Past Lessons to a Secure Future
As we embrace a connected world where machines have literal and figurative voices, we stand at the confluence of opportunity and responsibility. The IoT and OT landscape continues to evolve rapidly, bridging the physical and digital worlds. However, as Miguel Morales aptly highlighted during the Device Authority Virtual Summit 2024, the promise of IoT hinges on one critical factor: trust.