Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Latest News

upguard

5 Step Guide: How to Perform a Cyber Risk Analysis in 2021

Sep 10, 2021 By Edward Kost In UpGuard

No organization is impervious to cyberattacks. But what separates resilient businesses from data breach victims is superior risk management. Resilience is achieved through the meticulous calculation of all potential risks and the application of necessary control measures to mitigate them. In this post, we present a 4-step framework for a reliable risk management plan.

Read Post
veracode

2003 Testimony to Congress Proves That We Still Have a Long Way to Go In Building Secure Software

Sep 10, 2021 By Chris Wysopal In Veracode

Back in May 1998, as a member of the hacker think tank, L0pht, I testified under my hacker name, Weld Pond, in front of a U.S. Senate committee investigating government cybersecurity. It was a novel event. Hackers, testifying under their hacker names, telling the U.S. government how the world of cybersecurity really was from those down in the computer underground trenches.

Read Post
secude

8 Benefits of Implementing a Zero Trust Architecture

Sep 10, 2021 By Secude In SECUDE
Offers threat protection against both internal and external threats– External threats or hackers act from outside the organization and have to overcome the external security defense system to have access to the organization’s data. Malware, Phishing, DDoS attacks, ransomware, Trojan, worm, etc. are some of the methods used by hackers to gain entry into the organization’s corporate network. Unlike external threats, internal ones are usually hard to detect.
Read Post
devo

Federal Effort to Improve Cybersecurity Prioritizes Log Management

Sep 10, 2021 By Dan Wilbricht In Devo

In May, President Biden issued an executive order designed to improve cybersecurity in the federal government and, by extension, the nation. Recently, details have started to come out about what this much-needed effort will involve. The latest development is a memorandum from the Office of Management and Budget that focuses on data log collection and analysis.

Read Post
WatchGuard

Without MFA organizations won't get coverage

Sep 10, 2021 By Alexandre Cagnoni In WatchGuard

Recent cybersecurity incidents and ransomware attacks are driving companies to apply for cyber insurance. Meanwhile, over the last 12 months the rate of ransomware attacks has skyrocketed in both frequency and severity, driving significant changes in the cyber insurance marketplace. In years prior, cyber insurance submissions were simple and it was easy to obtain bindable quotes from multiple vendors.

Read Post
synopsys

Strengthen your cloud security posture with Azure Sentinel

Sep 10, 2021 By Prasanthi Akella In Synopsys

Scalable, cloud-native solutions like Azure Sentinel help security teams streamline security operations in cloud environments. In this first of a two-part blog series, we explore the challenges businesses face when detecting and responding to cyber threats and attacks, and how these challenges can be addressed by leveraging Microsoft Azure Sentinel.

Read Post
Featured Post
snyk

Dev-first SAST: Increase your developer productivity while staying secure

Sep 9, 2021 By Liran Tal, Director of Developer Advocacy In Snyk
Static application security testing (or SAST) used to be a term coined by the security team, to help developers test their code early in the software development life cycle (SDLC). Unlike dynamic testing, it does not require a working application, which allows developers to identify security vulnerabilities while they code, so they can spot them as soon as they appear and fix them when it's easiest and fastest to do so. This cuts down their future workload by decreasing the backlog of issues they'll have to address later.
Read Post
manageengine

How Kaseya fell victim to a ransomware attack

Sep 9, 2021 By Log360 In ManageEngine

On July 2, 2021, the cybersecurity world woke up to yet another ransomware attack—this time, the victim was Kaseya, a software enterprise that provides IT management solutions predominantly to managed service providers (MSPs). The attack made a huge impact, affecting several MSPs and thousands of their customers. So, what exactly transpired in what most cybersecurity experts are calling the largest criminal ransomware attack on record?

Read Post

Copyright © 2024 OpsMatters™. All rights reserved.