Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Security

ImmuniWeb

French police arrested Julius "Zeekill" Kivimäki, one of the most notorious hackers, wanted by Finland's authorities

Feb 9, 2023 By Application Security Weekly In ImmuniWeb

Read also: A global phishing syndicate used over 500 apps to steal data from phones, MITRE unveils a free tool to help organizations strengthen cyber resilience, and more.

Read Post
Trustwave

HTML Smuggling: The Hidden Threat in Your Inbox

Feb 9, 2023 By Trustwave In Trustwave

Last October, Trustwave SpiderLabs blogged about the use and prevalence of HTML email attachments to deliver malware and phishing for credentials. The use of HTML smuggling has become more prevalent, and we have since seen various cybercriminal groups utilizing these techniques to distribute malware. HTML smuggling employs HTML5 attributes that can work offline by storing a binary in an immutable blob of data within JavaScript code.

Read Post
signmycode

Code Signing Security: Publishers Getting More Aware After GitHub's Certificate Breach

Feb 9, 2023 By SignMyCode In SignMyCode

In this highly technology-driven world, no company is completely safe from cyber-attacks. Even one of the IT giants – GitHub faced exploitation, leading to the stealing of their Code Signing Certificates. There was only minimal impact on the organization and its software products. But, from the incident, almost every small, medium, and large-scale company has got aware of securing their software publisher certificates.

Read Post

Threat Intelligence: The Fuel for Your Security Programs

Feb 9, 2023 By Razorthorn In Razorthorn
Josh Davies shares that Threat Intelligence is essential for making your security programs successful. Just like fuel powers a car, threat intelligence drives your security efforts forward. But it's not as simple as buying a stockpile and forgetting about it. Threat intelligence is a constantly evolving force that must keep pace with the ever-changing threat landscape.
View Video

The Masterclass Series - Career Development & Incident Response

Feb 9, 2023 By Razorthorn In Razorthorn
Join cyber security veteran and Razorthorn MD James Rees on Friday 3rd Feb when we will be discussing: Career Path Management Choosing a discipline and a career path is an important part of your cyber security journey. Firstly today we discuss when to do it, how to choose, baseline and specialised certifications to consider, along with tips and tricks to ensuring you effectively manage your career path.
View Video
keeper

How to Check if a Link is Safe

Feb 9, 2023 By Aranza Trevino In Keeper

Clicking on malicious links can lead to compromised accounts and can infect your devices with malware. Learning how to check if a link is safe, before clicking on it, is important to keeping you safe online. You can check if a link is safe by hovering over the link to see if it’s the URL it’s saying it is or by using a URL checker.

Read Post
tigera

The MITRE ATT&CK framework explained: Discerning a threat actor's mindset

Feb 9, 2023 By Giri Radhakrishnan In Tigera

This is part 2 of the blog series on the MITRE ATT&CK framework for container security, where I explain and discuss the MITRE ATT&CK framework. For those who are not familiar with what the MITRE framework is, I encourage you to read part 1. In my previous blog post, I explained the first four stages of the MITRE ATT&CK framework and the tactics used by adversaries to gain a foothold in the network or the environment within a containerized application. What happens next?

Read Post
jfrog

Prevent Inadvertent Software Supply Chain Exposures When Allowing Public Access to Private Registries

Feb 9, 2023 By Sean Pratt In JFrog

At JFrog, we’re serious about software supply chain security. As a CVE Numbering Authority, our JFrog Security Research team regularly discovers and discloses new malicious packages and vulnerabilities posing a threat to development organizations. We know that in order to deliver trusted software on demand, you must have a secure software supply chain — making security a priority in everything we do.

Read Post

Copyright © 2024 OpsMatters™. All rights reserved.