Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Security

jfrog

CVE-2021-37136 & CVE-2021-37137 - Denial of Service (DoS) in Netty's Decompressors

Oct 26, 2021 By Ori Hollander In JFrog

The JFrog Security research team has recently disclosed two denial of service issues (CVE-2021-37136, CVE-2021-37137) in Netty, a popular client/server framework which enables quick and easy development of network applications such as protocol servers and clients. In this post we will elaborate on one of the issues – CVE-2021-37136.

Read Post
graylog

Small IT Teams with Big Security Problems

Oct 26, 2021 By Graylog Security Team In Graylog

Not every organization is - or even wants to be - a Fortune 500. Unfortunately, cybercriminals don’t care how big your company is. In fact, they often look to target small and midsize businesses (SMBs) knowing that they might have fewer security resources. You have the same problems that the big companies have, but you also have less money and people. Using centralized log management can give you the security solution you need, at a price you can afford.

Read Post
SecurityScorecard

The Evolution of Cybersecurity Solutions and Threats

Oct 25, 2021 By Sarah Daily In SecurityScorecard

In 1970, the world experienced its first “cyber attack” – What first started as a harmless joke, paved the way for a new wave of criminality - cybercrime. Since then, attacks have become more sophisticated with the use of malware, ransomware, and phishing attacks, among many others. In fact, according to Security Magazine, today’s hackers attack computers with Internet access every 39 seconds on average.

Read Post
Conseal Security

How can I secure my iOS app's code?

Oct 25, 2021 By Tom Colvin In Conseal Security

iOS is the operating system which powers Apple’s iPhone devices, and includes the special version iPadOS which runs on iPads. Apple claims it to be particularly secure, at least partly as a result of the limitations they place on what it is able to run. But regardless of how secure the OS is, apps built for it still need to be written in a secure way. Getting it wrong will leave your customers vulnerable.

Read Post
netskope

Cloud Threats Memo: BazarLoader Exploiting Popular Cloud Services

Oct 25, 2021 By Paolo Passeri In Netskope

BazarLoader (sometimes referred to as BazaLoader) is a popular downloader among criminals, used to distribute multiple malicious payloads including Ryuk and Conti ransomware. According to a recent report by Phishlabs, during Q3 2021 this malware accounted for 24.7% of all attacks, earning the unwelcome accolade of being the most common payload.

Read Post
upguard

ISO 27001 Implementation Checklist

Oct 25, 2021 By Catherine Chipeta In UpGuard

ISO/IEC 27001, commonly referred to as ISO 27001, is the most widely adopted international standard for managing data security and information security through an information security management system (ISMS). The standard was first published in 2005 by the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC). ISO 27001:2013 is the latest revision to the standard.

Read Post

Copyright © 2024 OpsMatters™. All rights reserved.