Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Forescout

2022 Cybersecurity Predictions - From Ransomware and Supply Chain Risks to Operational Technology and IoT

Dec 7, 2021 By Forescout Research Labs In Forescout

As we look ahead to 2022, we should pause to reflect on the trends of the past year. Ransomware and supply chain attacks have become two of the top concerns for organizations following a series of high-profile attacks, such as those conducted against Colonial Pipeline, SolarWinds and Kaseya. In 2021, our Project Memoria revealed close to 100 different vulnerabilities in common TCP/IP stacks, affecting hundreds of operational technology (OT) vendors.

Read Post
Forescout

Losing Control of Your Front Door

Dec 7, 2021 By Koren Molcho In Forescout

On November 10, 2021, Palo Alto Networks released advisories for eight different vulnerabilities affecting the company’s VPN firewall products. The vulnerabilities’ criticality ranges from ‘medium’ to ‘critical,’ with the most severe vulnerability, CVE-2021-3064 (CVSSv3.1 of 9.8), allowing for unauthenticated remote code execution, or RCE.

Read Post
Trustwave

Trustwave Gains CREST Vulnerability Assessment Accreditation

Dec 7, 2021 By Trustwave In Trustwave

Trustwave has been accredited by the internationally-recognized professional certification board CREST for its world-class vulnerability assessment services. Trustwave is now uniquely accredited with multiple CREST accreditations across Vulnerability Assessment (VA), Intelligence-Led Penetration Testing (STAR), Penetration Testing (PEN TEST) and STAR-FS Intelligence-Led Penetration Testing.

Read Post

Unified Agent - WhiteSource CLI

Dec 4, 2021 By Mend In Mend
This is the fourth video in a series describing how the WhiteSource Unified agent can be used to detect open source artifacts and their known vulnerabilities and licensing risks. This video will focus on performing a scan with the WhiteSource CLI which is a lightweight version of the unified agent that is designed for immediate feedback on a user's desktop.
View Video
bulletproof

Log4j detecting an attack and compromise in logs

Dec 3, 2021 By Brian Wagner In Bulletproof

Over the last two weeks, many have had flashbacks to 2012 when Heartbleed was released and everyone scrambled to fix broadly used OpenSSL. Due to their nature, some applications and services are so prolific that when a vulnerability is identified it causes massive issues for vendors and customers alike. The latest of this kind of issue is the Log4j vulnerability that has been dominating the press.

Read Post
outpost 24

2022 Cybersecurity Predictions

Dec 3, 2021 By Outpost 24 In Outpost 24

2021 was the year businesses continued to adapt to new working patterns, digital transformation and battle the increasing threats from ransomware attacks. Here our panel of security experts share their predictions for the key security challenges and trends to look out for in 2022 ensuring you can beat the hackers at their own game.

Read Post
elastic

Detecting and blocking unknown KnownDlls

Dec 3, 2021 By Gabriel Landau In Elastic

This is the second in a two-part series discussing a still-unpatched userland Windows privilege escalation. The exploit enables attackers to perform highly privileged actions that typically require a kernel driver. Part 1 of this blog series showed how to block these attacks via ACL hardening. If you haven’t already, please read the first part of this series, because it lays an important foundation for this article. Interested readers can also check out the excellent Unknown Known DLLs...

Read Post

Copyright © 2026 OpsMatters™. All rights reserved.