Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

%term

ioncube24

Weekly Cyber Security News 15/11/2019

Nov 15, 2019 By Kevin In ionCube24

A selection of this week’s more interesting vulnerability disclosures and cyber security news. There’s leaving a few API keys in a GitHub repo, and there’s leaving everything on Pastebin. The question then is who did it? Staff, hacker or 3rd party? Perhaps we will never know. Do we however have a moral of the story here? Maybe just don’t write everything down in the clear (and give it to someone)…

Read Post
upguard

What is Spear Phishing?

Nov 15, 2019 By Abi Tyas Tunggal In UpGuard

Spear phishing is an email spoofing attack targeting a specific organization or individual. Spear phishing emails aim to infect the victim with malware or trick them into revealing sensitive data and sensitive information. Spear phishers look for target who could result in financial gain or exposure of trade secrets for corporate espionage, personally identifiable information (PII) for identity theft and protected health information (PHI) for insurance fraud.

Read Post
sysdig

Securing Google Cloud Run serverless workloads

Nov 14, 2019 By Mateo Burillo In Sysdig

Google Cloud Run is a serverless compute platform that automatically scales your stateless containers. In this post we are going to showcase how to secure the entire lifecycle of your Cloud Run services. Sysdig provides a secure DevOps workflow for Cloud Run Platforms that embeds security, maximizes availability and validates compliance across the serverless lifecycle. Sysdig Secure Devops Platform is open by design, with the scale, performance and usability enterprises demand.

Read Post

Netwrix Auditor 9.9 - Visibility into Office 365 Permissions

Nov 14, 2019 By Netwrix In Netwrix
Visibility into SharePoint Online, OneDrive for Business and Exchange Online permissions, available in Netwrix Auditor 9.9, gives you a clear picture of who has access to what so you can enforce the least-privilege principle and ensure that your critical data is not overexposed. Keeping your critical data secure in Office 365 is not easy, in part because of the intricate system of issuing permissions there. How can you ensure that your SharePoint Online documents are not shared with external users? How can you quickly make sure that your CEO’s messages are not overexposed?
View Video

Netwrix Auditor for Office 365 - Overview

Nov 14, 2019 By Netwrix In Netwrix
Netwrix Auditor for Office 365 delivers complete visibility into what’s going on in your Office 365 environment. This insight empowers organizations to see who has access to what, monitor user activity in SharePoint Online, and audit all modifications and non-owner mailbox access events in Exchange Online to enhance the security of their critical data, continuously ensure business availability and prove compliance with less effort.
View Video
tripwire

Aligning SECaaS with Your Organization's Cloud Security Needs

Nov 14, 2019 By Melloney Jewell In Tripwire

One cannot underestimate the effect that the ongoing skills gap is having on organizations’ digital security strategies. Gartner estimates that the global number of unfilled digital security positions is expected to grow to 1.5 million by 2020. Reflecting this trend, more than 70 percent of organizations feel that hiring skilled infosec personnel became harder between 2017 and 2019.

Read Post
tripwire

Only after running out of hard disk space did firm realise hacker had stolen one million users' details

Nov 14, 2019 By Graham Cluley In Tripwire

Yet another company has been found lacking when it comes to securing its consumers’ data. Utah-based InfoTrax Systems provides back-end services to multi-level marketing companies (MLMs) such as dōTERRA, ZanGo, and LifeVantage, providing website portals where individuals can register as a distributor, sign-up new distributors, and place orders for themselves and end consumers.

Read Post

Copyright © 2024 OpsMatters™. All rights reserved.