Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

%term

fidelis security

Leading Reason for Data Loss: Social Engineering & Insider Threats

Oct 30, 2024 By Fidelis Security In Fidelis Security
When it comes to data loss, the biggest yet common dangers these days come from within the organization, and social engineering and insider threats are one of the main reasons. This shows that human mistakes are just as risky as external attacks. In this piece, you’ll see how social engineering and insider threats result in data loss. In addition to that, you’ll look at real examples to understand the seriousness of such threats and talk about steps companies can take to protect themselves.
Read Post

Why Risk-Based Vulnerability Management (RBVM) Increases Your Security Debt, and How You Can Fix It

Oct 30, 2024 By Nucleus In Nucleus
In this Nucleus webinar, we take a deep dive into the practical challenges and strategies for managing security debt in the context of Risk-Based Vulnerability Management (RBVM). Scott Kuffer, co-founder of Nucleus Security and veteran in vulnerability management, explains how RBVM has shifted from a holistic risk reduction approach to a prioritization-heavy process that often falls short. He discusses why traditional methods lead to excessive security debt and demonstrates how aligning VM processes with product management principles can create more efficient, business-centric remediation.
View Video
knowbe4

QR Code Phishing is Growing More Sophisticated

Oct 30, 2024 By Stu Sjouwerman In KnowBe4
Sophos describes a QR code phishing (quishing) campaign that targeted its employees in an attempt to steal information. The attackers sent phishing emails that appeared to be related to employee benefits and retirement plans. The emails contained PDF attachments which, when opened, displayed a QR code. If an employee scanned the code, they would be taken to a phishing page that spoofed a Microsoft 365 login form. The page was designed to steal login credentials and multi-factor authentication codes.
Read Post

Insider Threats & Third Party Risk: How to Manage Security Threats | Razorthorn Security

Oct 30, 2024 By Razorthorn In Razorthorn
Every vendor you trust and every employee you hire could be your next security crisis—explore the realities of third party risk and insider threats on this episode of Razorwire! Join us for a discussion on the multifaceted challenges of third party risk and how they can destabilise your organisation. From the growing complexities of cloud providers like AWS and Azure to detecting and dealing with insider threats, our conversation covers it all.
View Video
veriato

Beyond UEBA: Elevating Insider Risk Management with Behavioral Intelligence

Oct 30, 2024 By Veriato Team In Veriato
Insider risk management is more critical than ever as human error and insider threats drive escalating security breaches. While many organizations have adopted User and Entity Behavior Analytics (UEBA) to monitor potential risks, relying solely on UEBA may fall short of the depth needed to stay ahead of these increasingly complex threats.
Read Post
CrowdStrike

CrowdStrike Falcon Platform Supports Google Cloud's ARM-Based Axion CPUs

Oct 30, 2024 By Karishma Asthana In CrowdStrike
CrowdStrike is proud to announce cloud security support for Google Cloud’s first custom ARM-based processor, Axion, delivered by the unified, cloud-native CrowdStrike Falcon platform. This extends industry-leading protection to our customers with extensive coverage for Google Cloud environments. We are excited to collaborate with Google Cloud, which today unveils its new C4A Virtual Machines.
Read Post
keeper

What's New With Keeper | October 2024

Oct 30, 2024 By Rachel Gessner In Keeper
Passphrases are quickly emerging as a user-friendly alternative to traditional passwords. Earlier this year, Keeper integrated a passphrase generator into our web vault. Now, our users can take advantage of this ultra-secure, convenient functionality on our Android mobile app and KeeperFill Browser Extension, with iOS coming soon. Like Keeper’s password generator, you can generate a passphrase within your vault or record screen with a simple click of the dice.
Read Post
keeper

How Keeper Helps Businesses Comply With the New CMMC Ruling

Oct 30, 2024 By Chase Cunningham In Keeper
With the Cybersecurity Maturity Model Certification (CMMC) 2.0 now finalized by the U.S. Department of Defense (DoD), contractors and suppliers across the Defense Industrial Base (DIB) must ensure they meet stricter cybersecurity standards to maintain eligibility for DoD contracts. Achieving and maintaining CMMC compliance is no small task — it requires robust security protocols, continuous monitoring and strict control over access to sensitive information.
Read Post

Copyright © 2024 OpsMatters™. All rights reserved.