Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Latest News

cloudflare

Introducing Ephemeral IDs: a new tool for fraud detection

Sep 23, 2024 By Oliver Payne In Cloudflare
In the early days of the Internet, a single IP address was a reliable indicator of a single user. However, today’s Internet is more complex. Shared IP addresses are now common, with users connecting via mobile IP address pools, VPNs, or behind CGNAT (Carrier Grade Network Address Translation). This makes relying on IP addresses alone a weak method to combat modern threats like automated attacks and fraudulent activity.
Read Post
CalCom

A Comprehensive Guide to NIST SP 800-53B compliance in 2024

Sep 23, 2024 By John Gates In CalCom
NIST 800-53B, Control Baselines for Information Systems and Organizations, offers security and privacy control baselines for the Federal Government. It serves as a companion to NIST Special Publication (SP) 800-53, Revision 5, which outlines security and privacy controls for information systems and organizations.
Read Post
Torq

The Evolution of Automation and AI for Security Operations

Sep 23, 2024 By Bob Boyle In Torq
In an era where cyber threats are constantly evolving and security teams are overwhelmed by an ever-expanding flood of alerts, tech sprawl, and an ongoing talent shortage, the modernization of the SOC is no longer optional — it’s imperative. According to Gartner, automation and artificial intelligence are the keys to unlocking new levels of efficiency, accuracy, and resilience in the fight against cyber threats.
Read Post
armo

Complete your Kubernetes security with runtime protection

Sep 23, 2024 By Oshrat Nir In ARMO
Kubernetes today is the de facto standard for container orchestration, deployment automation, scaling, and management of containerized apps. The robustness and scalability of this open-source platform make it a valuable tool for businesses leveraging cloud-native technologies and DevOps practices. However, as with any technology that handles sensitive data and crucial operations, the importance of security in Kubernetes environments can’t be overstated.
Read Post
CalCom

Disable HTTP Trace Method in IIS - no one likes a parrot

Sep 22, 2024 By Ben Balkin In CalCom
The primary function of the HTTP trace method (aka trace or track verbs) is as a diagnostic tool used in web servers. It works by echoing back the received request so that the client can see what changes or additions have been made by intermediate servers. Essentially, when a client sends a TRACE request to a server, the server responds by sending back the exact request it received, including all the headers.
Read Post
securitysenses

A Comprehensive Guide to Post-Breach Services

Sep 22, 2024 By SecuritySenses In SecuritySenses
As businesses increasingly migrate to the cloud, leveraging its scalability, flexibility, and cost efficiency, they also face the rising threat of cyberattacks. Despite advanced preventive measures, breaches happen. When they do, knowing how to respond is critical to minimising damage, ensuring compliance, and maintaining customer trust. This guide delves into the essential post-breach services businesses need to implement to recover and strengthen their cybersecurity posture.
Read Post
securitysenses

How DevOps Automation Enhances Cloud Security

Sep 22, 2024 By SecuritySenses In SecuritySenses
When applied to cloud security, DevOps automation is able to speed up delivery while cutting down on errors. This blend results in faster deployments with a lower likelihood of vulnerabilities sneaking through. Here's a closer exploration of how this plays out, and why you should be making the most of tools in this category as part of your own operations.
Read Post
securitysenses

4 Ways Ethical Hacking Services Helped Businesses Prevent Cyber Attacks

Sep 22, 2024 By SecuritySenses In SecuritySenses
As technology continues to advance at a rapid pace, so do the tactics of cybercriminals. For businesses of all sizes, the threat of a cyber attack is growing more and more concerning. Through the use of ethical hacking techniques, companies can identify vulnerabilities in their systems. They can also address them before malicious hackers exploit them. In this post, we will explore the ways ethical hacking services have become a valuable asset in the fight against cyber attacks.
Read Post
manageengine

Top 10 cybersecurity misconfigurations and how to avoid them

Sep 20, 2024 By Log360 In ManageEngine
Have you ever heard of the 80/20 rule? The 80/20 rule, also known as the Pareto principle, was named after the Italian economist Vilfredo Pareto. It states that 80% of consequences come from 20% of causes. Though only a theory, the 80/20 rule has been empirically observed in numerous facets of business.
Read Post

Copyright © 2024 OpsMatters™. All rights reserved.