Mailchimp
Not subscribed to OpsMatters Newsletter
Security | Threat Detection | Cyberattacks | DevSecOps | Compliance
The Latest Cybersecurity News & Insights From Around The World
opsdemon
Latest posts
Threat Context monthly: Executive intelligence briefing for November 2024
Welcome to the Threat Context Monthly blog series where we provide a comprehensive roundup of the most relevant cybersecurity news and threat information from KrakenLabs, Outpost24’s cyber threat intelligence team. Here’s what you need to know from November.
Which Files Do You Need to Encrypt? How to Guarantee Privacy for Your Files
Are you worried about your personal information leaking online? Worried your email has breached online or leaked on the dark web? Unsure if you’re passwords are safe? Don’t worry, you’re not alone. Fortunately, encryption is our friend. It is an advanced technology that prevents hackers from stealing our sensitive information, protects us from data breaches, and ensures businesses can comply with data protection laws.
Tanium Ask - AI-Powered Question Bar - Tanium Tech Talks #111
Tanium Ask is an artificial intelligence (AI)-powered, natural language question bar that enables users to easily and rapidly query for real-time information about their environment. Leveraging industry-leading large language models, Tanium Ask can translate unstructured text input into high-fidelity queries with precise sensor and targeting parameters.
A Smarter Approach to Managing Security Services: The SecOps Cloud Platform (w/ MSSP Alert)
As an MSSP or MDR, your success hinges on the quality of your services and growing your customer base - not on managing infrastructure or worrying about uptime. Join us as we look at how LimaCharlie's SecOps Cloud Platform efficiently handles infrastructure, allowing you to focus on service, innovation and delivery. We'll explore how LimaCharlie's flexible, vendor-agnostic platform.
Command injection in 2024 unpacked
Command injection is a vulnerability still very prevalent in web applications despite being less famous than its cousins SQL injection or Code injection. If you’re familiar with other injection vulnerabilities, you’ll recognize the common principle: untrusted user input is not properly validated, leading to the execution of arbitrary system commands. This flaw occurs when unvalidated input is passed to system-level functions. So how prominent is command injection actually?
Understanding the Risks and Mitigation of Phishing Attacks in 2024
Even though cybersecurity is always changing, phishing attacks are still a threat that is getting worse. The goal of these attacks is to get people to give up private data like passwords, financial information, or company secrets by using social engineering tricks. As technology has improved, phishing schemes have grown more complex in 2024. They now use convincing methods to target both people and businesses. According to new studies, 91% of cyberattacks start with a phishing email.
SOC It to 'em: Shifting from Reactivity to Proactivity in Sec Ops with Jessica Hebenstreit
Jessica Hebenstreit, Faculty Member at IANS, presented "SOC It to 'em: Shifting from Reactivity to Proactivity in Sec Ops" for this weeks Defender Fridays session. Be part of our weekly interactive discussion where security professionals share real-world insights and practical knowledge.
Leaving TLS 1.2 and moving to TLS 1.3
Transport Layer Security (TLS) is a cryptographic protocol designed to provide secure communication between web browsers and servers. Many IP-based protocols such as HTTPS, SMTP, POP3, and FTP support TLS. Secure Sockets Layer (SSL), on the other hand, is a protocol used to establish an encrypted link between web browsers and servers. It uses symmetric cryptography to encrypt the data transmitted. Encryption keys are based on shared secret negotiation at the beginning of any communication session.
GDPR and CPRA: A Unified Call for Data Transparency and Accountability
The General Data Protection Regulation (GDPR) of the European Union and the California Privacy Rights Act (CPRA) represent landmark regulations designed to protect consumer data privacy. While GDPR became enforceable in May 2018, CPRA came into effect in January 2023, building on its predecessor, the California Consumer Privacy Act (CCPA). Both laws aim to empower individuals with greater control over their personal data while imposing rigorous obligations on businesses.