Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Latest News

SecurityScorecard

Data Breach at the Idaho National Laboratory

Dec 5, 2023 By SecurityScorecard In SecurityScorecard

On November 20, the Idaho National Laboratory (INL) confirmed that it had suffered a data breach. The confirmation followed the SiegedSec threat actor group’s circulation of claims that it had “accessed hundreds of thousands of user, employee and citizen data” on social media and hacking forums.

Read Post
SecurityScorecard

Research Into IoCs Linked to Exploitation of CVE-2023-47246

Dec 5, 2023 By SecurityScorecard In SecurityScorecard

The SecurityScorecard Threat Research, Intelligence, Knowledge, and Engagement (STRIKE) Team has conducted further research into the indicators of compromise (IoCs) that SysAid shared when disclosing a new vulnerability in its on-premise software last month.

Read Post
SecurityScorecard

Integrating Threat Intelligence into Your Cybersecurity Plan

Dec 5, 2023 By SecurityScorecard In SecurityScorecard

In the rapidly evolving digital landscape, the importance of a well-constructed cybersecurity plan cannot be overstated. However, the effectiveness of any cybersecurity strategy significantly depends on how well it integrates threat intelligence. Threat intelligence involves understanding, analyzing, and using knowledge about existing and potential cyber threats to make informed security decisions.

Read Post
bitsight

Introducing Bitsight Portfolio Risk Analytics

Dec 5, 2023 By Sean Kaine In BitSight
Do you know what percentage of your vendors are at higher risk of ransomware attack? Can you drill-in to see exactly who? Or more importantly, why? Or how effective your vendor program has been in reducing risk to the business over the last 12 months? In the ever-connected world of partners and suppliers, vendors and even more vendors, the line between ‘their risk’ and ‘your risk’ disappeared. And what security and compliance teams need more of is not more data, but insights.
Read Post
kovrr

Future-Proof Your Cyber Risk Management With 7 Top Trends in 2024

Dec 4, 2023 By Kovrr In Kovrr
The global marketplace faces an increasingly destructive cyber risk landscape each year, and 2024 is set to confirm this trend. The cost of data breaches alone is expected to reach $5 trillion, a growth of 11 percent from 2023. As technology advances, attackers continue to develop new, more sophisticated methods for infiltrating systems and exploiting vulnerabilities. ‍ Amongst cyber experts, it is now widely acknowledged that the question of an attack is not ‘if’ but ‘when.’
Read Post
upguard

Comprehensive TPRM: Your Board of Directors & Risk Oversight

Dec 4, 2023 By Nicholas Sollitto In UpGuard
Modern business is synonymous with third-party relationships. Organizations now rely on external providers for critical services and outsource essential responsibilities to improve operational efficiency and cut costs. The benefits of third-party vendors are clear, but so are the risks. The average organization has expanded and digitized its supply chain over the last few years while simultaneously increasing its risk profile and subjecting itself to new levels of risk.
Read Post
riskoptics

What is a Vendor Framework?

Dec 4, 2023 By RiskOptics In RiskOptics
For most businesses, third-party vendors are essential to the business ecosystem. A study by Gartner found that in 2019, 60 percent of organizations worked with more than 1,000 third parties. As those networks continue to grow, so will the cybersecurity threats that third-party vendor relationships pose to your business. These partnerships have unprecedented access to sensitive data and systems across the supply chain network.
Read Post
cultureai

Beyond phishing: The Top Employee Security Risks You're Probably Not Measuring

Dec 4, 2023 By Frederick Coulton In CultureAI
As companies use more tools and features, employee security risks grow too. While we all know email is a big target for attackers, it’s important to remember that email is not the only risk vector. Email is just one piece of the puzzle, which is why it is crucial to consider a wide range of employee security behaviours to get a holistic view of your risks. By doing so, you can focus resources more efficiently. Human Risk Management (HRM) is a vital part of cyber security in the workplace.
Read Post
riscosity

Unveiling Application Security: Threats, Tools, and Best Practices for 2024

Dec 3, 2023 By Riscosity In Riscosity
In today's rapidly evolving digital landscape, application security has become a critical component of modern software development. As cyberattacks grow more sophisticated, ensuring the integrity of applications and protecting sensitive data that these applications store, process, or handle is of paramount importance. In this blog post, we will delve into the world of application security - exploring key components, testing techniques, essential tools, and best practices - to help you stay ahead of the curve and safeguard your applications from cyber threats.
Read Post
upguard

Top 10 Features to Look For in Vendor Risk Assessment Reports

Dec 1, 2023 By Leah Sadoian In UpGuard
Utilizing third-party vendors can provide numerous benefits, such as cost savings, expertise, and efficiency. Still, it also introduces a range of risks that can significantly impact an organization's security, compliance, and overall operational integrity. Vendor Risk Assessments allow organizations to understand and manage these risks, making them a vital risk management tool during procurement, initial onboarding, and the vendor lifecycle.
Read Post

Copyright © 2024 OpsMatters™. All rights reserved.