Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Security

netskope

Netskope Cloud Threats Memo: Learnings From the Hi-Tech Crime Trends 2022/2023

Feb 16, 2023 By Paolo Passeri In Netskope

The underground economy of the initial access brokers (IABs) is more flourishing than ever. At least this is one of the conclusions of the recent report “Hi-Tech Crime Trends 2022/2023” released by Group-IB. Initial access brokers exploit vulnerabilities or misconfigurations to get hold of valid access credentials (typically VPN or RDP) and outsource or sell them to criminal gangs, including ransomware operators.

Read Post
splunk

Phishing Scams & Attacks: What To Expect in 2023

Feb 16, 2023 By Guest In Splunk
A form of social engineering, phishing is an online situation where the adversary tricks the victim into sharing sensitive information or installing a malware payload into their systems. Today, phishing is the most prevalent cybersecurity threat in the digital world, with the victim count totaling well over 323,000 unsuspecting Internet users. That’s a 34% increase year over year — and that’s why we’re taking a look at this concerning trend here.
Read Post
splunk

Honeypots Explained: Hitting Hackers Where It Hurts

Feb 16, 2023 By Guest In Splunk
In the world of cybersecurity, honeypots are a unique mechanism. They exhibit no business value, no production value. In fact, any or all interactions with the honeypot are expectedly anomalous and unauthorized. Honeypots are nothing more than a trap set up to lure cybercriminals into believing that they have accessed legitimate and high value computing resources within your network.
Read Post
Forescout

BOD 23-01 April 3, 2023, Deadline for Federal Agencies: Are You Ready?

Feb 16, 2023 By Chad Keefer, Vice President, Federal Civilian and FSI In Forescout

On October 3, 2022 the Cybersecurity and Infrastructure Security Agency (CISA) issued Binding Operational Directive 23-01 – Improving Asset Visibility and Vulnerability Detection on Federal Networks, a compulsory order intended to “make measurable progress toward enhancing visibility into agency assets and associated vulnerabilities.” BOD 23-01 mandates that Federal Civilian Executive Branch (FEEB) agencies complete a series of required actions within six months, or by April 3, 2023.

Read Post
mend

Open Source License Management Tools: Features and Best Practices

Feb 16, 2023 By Adam Murray In Mend

Effectively managing the many open source licenses used in enterprise software is a complex task that requires a thorough evaluation of key features in software license management tools. After that, you need to implement the technology using several best practices. In this blog post, let’s take a brief look at both.

Read Post
tripwire

Cybercriminal convicted of $90 million SEC earning reports hack

Feb 16, 2023 By Graham Cluley In Tripwire

The owner of a Russian penetration-testing company has been found guilty of being part of an elaborate scheme that netted $90 million after stealing SEC earning reports. For nearly three years, 42-year-old Vladislav Klyushin - the owner of Moscow-based cybersecurity firm M-13 - and his co-conspirators had hacked into two US-based filing agents used by publicly-traded American companies to file earning reports to the Securities and Exchange Commission.

Read Post

Why Veterans Make Great Infosec Professionals

Feb 16, 2023 By Razorthorn In Razorthorn
Infosec is a demanding field that requires individuals to be adaptable, quick-thinking, and able to handle difficult situations. In this video, James Rees explores why veterans are well-suited for infosec careers, with their unique experiences and skill sets making them ideal candidates for the industry. From their ability to handle high-pressure environments to their willingness to take on challenging subject matters, find out why veterans are making a big impact in infosec.
View Video

Copyright © 2024 OpsMatters™. All rights reserved.