Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Latest News

kroll

Emotet Analysis: New LNKs in the Infection Chain - The Monitor, Issue 20

May 27, 2022 By Kroll In Kroll

Kroll has been tracking Emotet since it was first identified in 2014, especially during its transition from a banking Trojan designed to primarily steal credentials and sensitive information to a multi-threat polymorphic downloader for more destructive malware. Today, Emotet operators stand as one of the most prominent initial access brokers, providing cybercriminals with access to organizations for a fee.

Read Post
Arctic Wolf

7 Cybersecurity Best Practices Financial Firms Should Live By

May 27, 2022 By Arctic Wolf In Arctic Wolf
According to the 2021 IBM X-Force Threat Intelligence Index , the finance and insurance industry sector experienced the most cyber attacks for the fourth year in a row. It’s no mystery why: Hackers go where the money is. And according to Verizon's 2021 Data Breach Investigations Report (DBIR), financial gain was the most common motive in data breaches across all industries: 93 percent of breaches involving companies with fewer than 1,000 employees were financially motivated.
Read Post
splunk

Publish Your Splunk SOAR Apps Faster

May 27, 2022 By Matt Sayar In Splunk

The process for our technology partners to publish their SOAR Apps to Splunkbase just got faster and simpler. App updates are now automatically pulled from our partners’ GitHub repositories into the Splunkbase library in a matter of minutes. With 350+ SOAR Apps on Splunkbase across 200+ partners, this process improvement makes Splunk easier to integrate with and more importantly, provides our customers with even faster access to up-to-date Apps.

Read Post
egnyte

Protect CUI, FCI for Your Company's CMMC Compliance

May 27, 2022 By David Buster In Egnyte

If your company does any business with the U.S. Department of Defense, you will be required to comply with CMMC 2.0 to be considered for future contracts. It doesn’t matter if you sell a product or a service, if DoD business is only a small part of your revenue, or if you are only a subcontractor. You will still be required to comply, even if the work you do hasn’t changed. Your business needs to start building a roadmap for CMMC Level 1 or Level 2 compliance.

Read Post
riskoptics

Vulnerability Scanners: Passive Scanning vs. Active Scanning

May 27, 2022 By RiskOptics In RiskOptics
Vulnerabilities in enterprise environments create many opportunities for cyber criminals to attack the organization. Bad actors may take advantage of security misconfigurations, broken authentication processes, buffer overflows, and other vulnerabilities to spread malware, launch account takeover attacks, and steal large amounts of sensitive data. As of April 2022, the U.S.
Read Post
riskoptics

The Aftermath: Steps to Recovering from a Malware Attack

May 27, 2022 By RiskOptics In RiskOptics
Malware (shorthand for “malicious software”) is any intrusive software that can infiltrate your computer systems to damage or destroy them or to steal data from them. The most common types of malware attacks include viruses, worms, Trojans, and ransomware. Malware attacks are pervasive, and can be devastating to an unprepared business. Preparing for such attacks also means accepting the reality that eventually you will fall victim to one – and that you can then recover from it swiftly.
Read Post
vista infosec

Top Challenges Faced in the Current Cyber Security Industry

May 27, 2022 By Narendra Sahoo In VISTA InfoSec

Protecting devices, data, or systems from cyber threats is what cyber security is all about. These cyber-attacks are usually aimed at gaining access to, destroying, or stealing sensitive data, or consumers’ money and disrupting online transactions and business operations. Implementing an effective cyber security system is critical, as the task has grown increasingly difficult.

Read Post
Featured Post
CrowdStrike

Four Takeaways as the European Union's General Data Protection Regulation (GDPR) Turns 4

May 26, 2022 By Drew Bagley, Vice President & Counsel, Privacy & Cyber Policy In CrowdStrike
May 25 2022, marked four years since the European Union's General Data Protection Regulation (GDPR) went into effect. Although the scope of the law is limited to personal data originating from activities in the European Economic Area, the ensuing requirements have had a global impact. This is evident in similar laws that have been proposed or passed and measures multinational organizations have taken to comply with privacy requirements. In parallel, there has been a convergence of a principles' based approach to cybersecurity in many jurisdictions worldwide.
Read Post
manageengine

Chip away at age old-password problems by reinventing your security strategies

May 26, 2022 By General In ManageEngine

Despite wide-spread knowledge on the risk of using a weak password, 123456 is still a common password in use by a number of users. You’re probably wondering who would still use this password. Well, close to 103 million people around the world according to NordPass’ report. While this is alarming, let’s just take a moment to consider why users choose simple, easy-to-remember passwords despite being aware of the risks. Password overload: How big of a concern is it?

Read Post
nightfall

What is ePHI? A Guide to electronic Protected Health Information (ePHI)

May 26, 2022 By Emily Heaslip In Nightfall

ePHI stands for electronic protected health information. Electronic protected health information is protected under the Health Insurance Portability and Accountability Act of 1996, commonly known as HIPAA. ePHI security is governed by the HIPAA Security Rule. With the rise of telehealth, covered entities need to understand the requirements for safely transmitting, storing, and using ePHI to be compliant with the Security Rule and to protect a patient’s privacy.

Read Post

Copyright © 2024 OpsMatters™. All rights reserved.