Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Latest Blogs

Non-repudiation: Your Virtual Shield in Cybersecurity

In the digital world, where countless users communicate, share data, and engage in diverse activities, determining the origin and actions behind these interactions can be quite challenging. This is where non-repudiation steps in. Coupling other security factors, such as delivery proof, identity verification, and a digital signature, creates non-repudiation. This guarantees that the parties involved in the transmission are unable to renounce the execution of an action.

Email Deliverability: Finding and Fixing Issues with GlockApps

Are your email campaigns not producing the expected results? Do you have disappointingly low open rates, or worse, are your emails getting lost in the spam folder? If so, you're not alone because almost every marketer faces email deliverability issues. But there is good news, and it is that they're not impossible to overcome. In this article, we'll cover the ins and outs of finding and fixing email deliverability issues so that your messages are received by your audience and read on time.

Five worthy reads : Securing the connected world thru cybersecurity in the IoT era

Five worthy reads is a regular column on five noteworthy items we have discovered while researching trending and timeless topics. This week, we will be discussing the challenges of cybersecurity in the IoT era and how it can be secured. The Internet of Things (IoT) has revolutionized the way we live and work, with hundreds of connected devices now integrating into our daily lives. However, this rapid expansion of IoT has also brought new cybersecurity challenges.

Greening the Digital Frontier: Sustainable Practices for Modern Businesses

The push towards digital transformation has significantly improved efficiency, productivity, and accessibility for businesses globally. However, the environmental footprint of digital operations has increasingly become a focus for concern. As companies continue to leverage digital technologies, the need for integrating sustainable practices into their operations has never been more critical. This article delves into the environmental impact of digitalisation and outlines practical strategies for businesses aiming to achieve sustainability in the digital age.

Meet EO 14028 requirements with Datadog Log Management, Cloud Workload Security, and Cloud SIEM

As of August 2023, only 3 out of 23 US government agencies were compliant with Office of Management and Budget (OMB) requirements for log management and security observability. These requirements are outlined in M-21-31, a 2021 memorandum that was issued following Executive Order 14028 on improving national cybersecurity. Until all of these agencies implement the new requirements, the federal government’s ability to fully detect, investigate, and remediate cybersecurity threats will be constrained.

SafeBreach Coverage for AA24-060A (Phobos Ransomware) and AA24-060B (Ivanti Connect Secure)

On February 29th, the Cybersecurity and Infrastructure Security Agency (CISA) issued two separate advisories related to malicious behavior exhibited by threat actors. The first advisory AA24-060A pertains to Phobos Ransomware and the second advisory AA24-060B pertains to the exploitation of vulnerabilities in Ivanti Connect Secure and Policy Secure Gateways.

Password Spraying vs Credential Stuffing

Password spraying and credential stuffing have a lot in common, but the main difference is in the way the attack is executed. With credential stuffing, the cybercriminal already has a set of verified login credentials, whereas, with password spraying, the cybercriminal has to guess the login credentials by matching a list of usernames with a commonly used password.

Detect Money Laundering, Healthcare Fraud, and Unemployment Fraud with the New Version of the Splunk App for Fraud Analytics

Fraud is a problem that impacts all of us in different ways; there’s probably no one who hasn’t been directly or indirectly impacted by some kind of fraudulent activity. Have you or someone you know had their identity stolen? Has someone hacked your email or social media account? Have you had money taken from your account (think bank or credit cards here) one way or another? These are all examples of fraud and how it can affect us.

When Patch Tuesday becomes Patch Monday - Friday

If you’re an administrator running Ivanti VPN (Connect Secure and Policy Secure) appliances in your network, then the past two months have likely made you wish you weren’t. In a relatively short timeframe bad news kept piling up for Ivanti Connect Secure VPN customers, starting on Jan. 10th, 2024, when critical and high severity vulnerabilities, CVE-2024-21887 and CVE-2023-46805 respectively, were disclosed by Ivanti impacting all supported versions of the product.