Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Latest News

code intelligence

Securing medical devices: The role of fuzz testing in cybersecurity

May 3, 2024 By Natalia Kazankova In Code Intelligence
In today's digital and interconnected era, the healthcare sector operates in a landscape of security risks. In 2023 alone, the number of vulnerabilities uncovered in medical devices jumped by 59% to 993 issues. Consequently, the U.S. Food and Drug Administration (FDA), the European Commission, and other governmental agencies have issued cybersecurity guidelines for medical devices. Many of these guidelines advocate for fuzz testing as a means of vulnerability detection.
Read Post
teleport

How To Detect Compromised Identities with Teleport

May 3, 2024 By Szymon Drosdzol, Doyensec Security, Aleksandr Klizhentas, Teleport Platform Security In Teleport
Our customers use Teleport to solve a wide range of problems: They access their infrastructure remotely without passwords or shared secrets, and replace shared credentials in CI/CD systems and workloads with mTLS. They eliminate the need for VPNs and enable Just-In-Time Access to web apps, cloud consoles, databases, and more.
Read Post
securitysenses

Detecting and Preventing Reconnaissance Attacks

May 2, 2024 By SecuritySenses In SecuritySenses
In 2024, every business across the world is already aware of the looming potential of a cyber attack. With billions of dollars pouring into the cyber criminal market each year, hackers have more backing to create large-scale attacks, breaching financial records, private data, and customer information. Reconnaissance attacks are the first step in many of these major breaches. By scouting out a business, collecting information about its security posture, and aiming to identify vulnerabilities, these initial attacks give hackers the data they need to launch precise, damaging attacks.
Read Post
securitysenses

Building Trust and Engagement: Mobile App Security for the Modern User

May 2, 2024 By SecuritySenses In SecuritySenses
In today's fast-paced digital world, the focus is on creating secure and frictionless mobile applications that prioritize user privacy. This balance is particularly critical when dealing with in-app subscription management, a key revenue source and a hot spot for user data interaction. Proper management of these subscriptions is crucial for both securing continuous revenue and ensuring user trust alongside compliance with strict data protection standards.
Read Post
obrela

Obrela Digital Universe Report Reveals Most Common Cyber Security Attacks, And Sectors Most Affected

May 2, 2024 By Obrela In Obrela
Ransomware attacks increasingly targeting critical infrastructure, the financial sector, healthcare and educational institutions. Less-protected third-party partners with privileged access increasingly targeted.
Read Post
SecurityScorecard

Examining the Concentration of Cyber Risk: How supply chains and global economies can adapt

May 2, 2024 By SecurityScorecard In SecurityScorecard
Company mergers, the consolidation of cloud technologies, and the interconnected nature of digital business have all led to a more efficient, fast-paced digital economy. But these advantages have also ushered in a higher degree of cyber risk concentration that stands to threaten national security and global economies.
Read Post
jfrog

Leveraging Shift Left and Shift Right for End-To-End Application Security

May 2, 2024 By The JFrog Team In JFrog
Despite organizations’ best efforts, security threats are on the rise, with malicious actors continuously evolving their tactics. Unfortunately, the situation is only intensifying as hackers from all walks of life leverage artificial intelligence (AI) and machine learning (ML) techniques. To combat these threats, security teams need to implement gates and controls throughout their entire software development lifecycle.
Read Post
kondukto

4 Ways to Improve AppSec Accountability

May 2, 2024 By Andreas Wiese In Kondukto
This blog post dives into four essential strategies to enhance AppSec accountability: establishing clear security policies, utilizing advanced tools and automation, fostering a security-conscious culture, and implementing security orchestration. Readers will gain valuable insights into aligning their cybersecurity measures with business goals, ensuring a robust and strategic AppSec framework.
Read Post
noname security

Noname Security Platform Updates: 3.30 Release

May 2, 2024 By Stas Neyman In Noname Security
The latest Noname Security 3.30 update includes a new feature that allows for convenient tracking of attacker IP addresses, as well as improved options for triggering workflows to resolve attacks faster. Additionally, the process of installing Noname Remote Engine on local Kubernetes clusters has been simplified.
Read Post
knowbe4

Analysis Shows 2023 to be "Worst Year for Phishing on Record"

May 2, 2024 By Stu Sjouwerman In KnowBe4
Newly-released data highlights our worst fears about the prevalence of phishing, and some glimmer of hope that the good guys may be winning the fight. Every quarter, the Anti-Phishing Working Group puts out a Phishing Activity Trends Report to highlight the changes in phishing attacks, including the number of campaigns, attacks, targets, and brands impersonated. The focus of the report covering 4th Quarter 2023 was the significant dip in the number of attacks in Q3 of last year.
Read Post

Copyright © 2024 OpsMatters™. All rights reserved.