Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Latest News

riscosity

FedRAMP Certification and Data Security

Nov 13, 2024 By Anirban Banerjee In Riscosity
Federal Risk and Authorization Management Program (FedRAMP) and State Risk and Authorization Management Program (StateRAMP) are pivotal frameworks for securing cloud services used by federal and state governments, respectively. These programs mandate stringent security protocols, emphasizing the need for organizations to manage and disclose third-party involvement in delivering software services to the government.
Read Post
upguard

Is the ASX 200 Resilient to Cyber Threats? Our Report Says No.

Nov 13, 2024 By Greg Pollock In UpGuard
In today’s rapidly evolving digital landscape, managing cyber risk has become essential for sustaining corporate growth and resilience. Cyber risk management requires balancing corporate growth against the evolving tactics of threat actors and governmental regulations – a daunting task that requires continuous measurement and strategic reflection.
Read Post
bitsight

ICS Security Is a Team Sport

Nov 12, 2024 By Brandon Smith In BitSight
As we discussed in the first article in this series, there are many Internet-exposed control systems, but they are very different from traditional IT systems and require a different security approach. With these systems being so critical and controlling processes that can potentially lead to loss of life if they fail, what is being done to tackle this issue? In this article I’ll dive into this and more, looking at.
Read Post
SecurityScorecard

The Botnet is Back: SSC STRIKE Team Uncovers a Renewed Cyber Threat

Nov 12, 2024 By SecurityScorecard In SecurityScorecard
A silent danger is sweeping through the world’s critical infrastructure. The SecurityScorecard STRIKE Team has uncovered a resurgence of Volt Typhoon—a state-sponsored cyber-espionage group from the Asia-Pacific region, known for its precision and persistence. This is no ordinary attack. Volt Typhoon exploits unprotected, outdated edge devices within targeted critical infrastructure.
Read Post
kovrr

9 Cyber Risk Management Trends in 2025 Every Business Should Know

Nov 11, 2024 By Kovrr In Kovrr
‍The evolution of the cyber risk management landscape is constant, and with each passing year, market players find themselves in the position of having to readjust their strategies, whether in brand positioning, cybersecurity, or beyond, to account for these consequent changes. While some of the shifts are welcome, others are less so. Nevertheless, all require careful foresight.
Read Post
securitysenses

How to Conduct a Comprehensive Base Security Assessment

Nov 11, 2024 By SecuritySenses In SecuritySenses
Conducting a comprehensive base security assessment is crucial. It ensures the safety of personnel, assets, and information. With the rise of various threats, it's more important than ever to evaluate and enhance security measures systematically. A thorough assessment not only identifies weaknesses. It also assists in implementing effective security controls to mitigate risks. In this detailed guide, we will explore essential steps and best practices to perform a base security assessment. We will enable you to deploy effective security solutions tailored to your environment.
Read Post
obrela

Tips for NIS2 Compliance: What Companies Need to Do - and Will It Work?

Nov 8, 2024 By Notis Iliopoulos In Obrela
The Network and Information Systems Directive (NIS2) marks a significant step forward in Europe’s efforts to bolster cybersecurity resilience. Alongside the Critical Entities Resilience Directive, it represents a commitment to ensuring that organisations offering essential services—such as financial services, healthcare, transport, and energy—are equipped to withstand cyber threats.
Read Post
riscosity

Investigating iOS 18's AI Capabilities

Nov 7, 2024 By Anirban Banerjee In Riscosity
With the release of iOS 18, Apple has continued to expand its integration of AI technologies, positioning the iPhone as a powerful personal assistant capable of smart recommendations, advanced text and image analysis, and even predictive suggestions. Leveraging on-device machine learning, iOS 18’s AI features tap into user data to provide a personalized experience.
Read Post
obrela

What is GRC in Cyber Security? Why is it Important?

Nov 7, 2024 By Obrela In Obrela
Governance, Risk Management, and Compliance (GRC) in cybersecurity is a framework that is designed to help organizations align their security efforts with business objectives while also managing risks and adhering to legal and regulatory requirements. To implement GRC in Cyber security effectively, it is important to understand the purpose of each element and the part each has to play in improving an organization’s security posture.
Read Post
SecurityScorecard

Securing Port 139: Strategies to Prevent Unauthorized Access and Cyber Threats

Nov 7, 2024 By SecurityScorecard In SecurityScorecard
In the realm of network security, safeguarding communication ports is a fundamental aspect of protecting a network’s integrity and confidentiality. Port 139, primarily used by the Server Message Block (SMB) protocol for file sharing in Windows networks, stands out as a critical point of vulnerability when not properly secured. This port facilitates network communications, allowing computers to share files, printers, and serial ports over a network.
Read Post

Copyright © 2024 OpsMatters™. All rights reserved.