Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Latest News

tripwire

Non-repudiation: Your Virtual Shield in Cybersecurity

Jan 18, 2038 By Dilki Rathnayake In Tripwire

In the digital world, where countless users communicate, share data, and engage in diverse activities, determining the origin and actions behind these interactions can be quite challenging. This is where non-repudiation steps in. Coupling other security factors, such as delivery proof, identity verification, and a digital signature, creates non-repudiation. This guarantees that the parties involved in the transmission are unable to renounce the execution of an action.

Read Post
securitysenses

Detecting and Preventing Reconnaissance Attacks

May 2, 2024 By SecuritySenses In SecuritySenses
In 2024, every business across the world is already aware of the looming potential of a cyber attack. With billions of dollars pouring into the cyber criminal market each year, hackers have more backing to create large-scale attacks, breaching financial records, private data, and customer information. Reconnaissance attacks are the first step in many of these major breaches. By scouting out a business, collecting information about its security posture, and aiming to identify vulnerabilities, these initial attacks give hackers the data they need to launch precise, damaging attacks.
Read Post
securitysenses

Building Trust and Engagement: Mobile App Security for the Modern User

May 2, 2024 By SecuritySenses In SecuritySenses
In today's fast-paced digital world, the focus is on creating secure and frictionless mobile applications that prioritize user privacy. This balance is particularly critical when dealing with in-app subscription management, a key revenue source and a hot spot for user data interaction. Proper management of these subscriptions is crucial for both securing continuous revenue and ensuring user trust alongside compliance with strict data protection standards.
Read Post
obrela

Obrela Digital Universe Report Reveals Most Common Cyber Security Attacks, And Sectors Most Affected

May 2, 2024 By Obrela In Obrela
Ransomware attacks increasingly targeting critical infrastructure, the financial sector, healthcare and educational institutions. Less-protected third-party partners with privileged access increasingly targeted.
Read Post
noname security

Noname Security Platform Updates: 3.30 Release

May 2, 2024 By Stas Neyman In Noname Security
The latest Noname Security 3.30 update includes a new feature that allows for convenient tracking of attacker IP addresses, as well as improved options for triggering workflows to resolve attacks faster. Additionally, the process of installing Noname Remote Engine on local Kubernetes clusters has been simplified.
Read Post
knowbe4

Analysis Shows 2023 to be "Worst Year for Phishing on Record"

May 2, 2024 By Stu Sjouwerman In KnowBe4
Newly-released data highlights our worst fears about the prevalence of phishing, and some glimmer of hope that the good guys may be winning the fight. Every quarter, the Anti-Phishing Working Group puts out a Phishing Activity Trends Report to highlight the changes in phishing attacks, including the number of campaigns, attacks, targets, and brands impersonated. The focus of the report covering 4th Quarter 2023 was the significant dip in the number of attacks in Q3 of last year.
Read Post
cyberark

Transforming Critical Infrastructure Security: The Power of Identity

May 2, 2024 By Chris Maroun and Ryne Laster In CyberArk
In an era when every aspect of our society depends on reliable critical infrastructure, the role of identity security in safeguarding these essential services has never been more pivotal. With sophisticated cyberthreats escalating, understanding the transformational potential of identity security is akin to orchestrating a symphony. Each section – strings, woodwinds, brass and percussion – must perfectly harmonize to produce a masterpiece.
Read Post
Forescout

UK PSTI Act is a milestone for IoT security and passwords

May 2, 2024 By Vincent Saporito In Forescout
The growth of Internet of Things (IoT) devices is reshaping our digital landscape. From smart thermostats to industrial sensors to IP cameras to smart toilets, these devices drive efficiency through innovation. But they aren’t secure by nature. A new UK law aims to make IoT products much more secure. On April 29, the UK’s Product Security and Telecommunications Infrastructure (PSTI) Act became official and is now enforcing compliance across IoT assets.
Read Post
keeper

What Is a Silver Ticket Attack?

May 2, 2024 By Jaryeong Kim In Keeper
A ticket in cybersecurity is a set of credentials used to authenticate users. A silver ticket is a forged ticket an unauthorized user creates. With this forged silver ticket, threat actors can launch a cyber attack that involves exploiting the weaknesses of a Kerberos authentication system. In this system, a Ticket Granting Service (TGS) serves as the credential token, granting authorized users access to particular services.
Read Post

Copyright © 2024 OpsMatters™. All rights reserved.