In November 2021, the U.S. Department of Defense significantly updated its Cybersecurity Maturity Model Certification (CMMC) framework to incorporate new cybersecurity requirements for DoD contractors. In particular, CMMC 2.0 Level 1 (Foundational) contractors must now perform annual self-assessments, and Level 2 (Advanced) contractors must perform annual self-assessments for selected programs.

Global third-party suppliers have become an essential resource for many companies, providing crucial strategic and competitive support. Outsourcing, however, is not without its dangers. As dependency on third parties grows, so do the chances of supply chain, compliance, or reputation risks that hit your organization through those third parties. Your management team will need to address those risks somehow.

Cyber security is an important aspect and an integral part of any online business. The layperson has little idea of what threats exist and how to protect against them. And yet, if you own a business you are almost definitely vulnerable to cyber security threats. You don’t need to be a Fortune 500 company to protect against them. By knowing what to do, you can keep your data secure and avoid breaches.

Today’s threat actors often carry out cyber attacks with the primary objective of accessing and exfiltrating sensitive information from your IT environment. Efforts to obtain this “crown jewel” information usually involve complex multi-phase cyber attacks. But another way in which sensitive data ends up in the hands of malicious actors with a lot less effort is when an organization exposes sensitive data assets in a data leak incident.

A security operations center (SOC) is the centralized security team that deploys the tools needed to continuously monitor and improve an organization's security approach while also preventing, detecting, analyzing and responding to security alerts. You could say the SOC acts as the central command of an organization's security, bringing together its entire IT infrastructure, including its networks, devices and company data, both inside the corporate perimeter and outside.

Read also: Conti threatens to overthrow the Costa Rican government, the US warns of risks of hiring North Korean tech workers, and more.

A new protocol, DNS over HTTPS (DoH), is a sensation in modern times, designed for enterprise security products and policies. A combination of DNS protocol and HTTPS protocol, DoH affects businesses, organisations, and regular users. DNS over HTTPS is used to enhance the security of network communication.

One of our partners in the LATAM region is working with an end customer, to implement a custom predictive maintenance dashboard, by pulling in and correlating data from multiple sources (like Zabbix, Jira Cloud, Cato Networks, Extreme Networks CloudIQ, etc.) and sending out the data to update a Grafana dashboard, which can read data from OpenSearch. Partner is using our data bots and low-code/no-code pipelines to implement this project.

Phishing website links are commonly delivered via email to their respective targets. Once clicked, these websites often show a single webpage that outright asks for sensitive information like account login credentials, credit card details, and other personally identifiable information (PII). Recently, we have encountered an interesting phishing website containing an interactive component in it: a chatbot.

With the rise of internet penetration and increased mobile usage, the significance of mobile applications has increased multifold. Everything is covered through mobile applications, from mundane day-to-day activities to high-end financial transactions. According to Techjury, there are 10 billion mobile devices currently in use, and a staggering more than 51% of people in the USA spend their time on mobile phones.