Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Security

redscan

The rise and fall of the Emotet botnet

Apr 23, 2021 By Mariya Grozdanova In Redscan
A botnet is a network of hijacked computers and devices infected with malware and controlled remotely by cybercriminals. This network is then used to send spam and launch Distributed Denial of Service (DDoS) attacks. It can also be rented out to other cybercriminals. The Emotet botnet has been a thorn in the side of security teams for many years and has infected hundreds of thousands of devices since 2014.
Read Post
synopsys

How to cyber security: 5G is not magic

Apr 23, 2021 By Jonathan Knudsen In Synopsys

5G is faster than its predecessor but that doesn’t change the approach to software security for your applications. Some wild claims have been made about 5G networking. I’ve heard mention of self-healing factories and smart highway systems. While such things might be possible, there’s nothing magical about 5G. In essence, it’s just faster wireless networking than we’ve had before. That’s nice, but hardly revolutionary.

Read Post
manageengine

Security threats affecting your workforce productivity? Here's how Forrester says you can address them

Apr 22, 2021 By Desktop Central In ManageEngine

According to Forrester, the number of permanent, full-time remote workers is expected to increase by 300 percent or more compared to pre-pandemic numbers. Amid the chaos surrounding the pandemic, getting your entire workforce back to the office seems trivial, especially when many employees’ work can be done remotely. It’s no wonder that, according to Gartner, almost half of employees will continue to work remotely post COVID-19.

Read Post
cyberint

How Threat Intelligence Could Have Helped Prevent 2020's Cybersecurity Incidents

Apr 22, 2021 By Threat Intelligence Team In Cyberint
If anyone has benefitted from the pandemic, it has been cyber attackers. As businesses expanded their investment in cloud resources and other IT resources in response to the pandemic, cyberattacks also dramatically increased. Businesses reported 445 million cyberattack incidents in 2020, double the rate for 2019. It didn’t have to be this way. With stronger threat intelligence solutions in place, many of the security incidents of 2020 could likely have been averted.
Read Post

How to prevent OWASP API Top 10 security vulnerabilities? API attack prevention

Apr 22, 2021 By Cyphere In Cyphere
Broken object level authorization Broken user authentication Excessive data exposure Lack of resources and rate limiting Broken function level authorization Mass assignment Security misconfiguration Injection Improper assets management Insufficient logging and monitoring Cyphere is a UK-based cyber security services provider helping organisations to secure their most prized assets. We provide technical risk assessment (pen testing/ethical hacking) and managed security services. This advice is a true third party opinion, free from any vendor inclinations or reselling objectives.
View Video
detectify

A hacker's approach to finding security bugs in open source software

Apr 22, 2021 By Jocelyn Chan In Detectify

Spencer Pearlman, Security Researcher at Detectify, presented A Hacker’s Approach to Finding Security Bugs in Open Source Software in a partnered webinar with friends at Debricked. Securing modern web applications takes new approaches, and this includes looking at it from a hacker’s perspective. Here are highlights from the presentation on how tech teams can apply the same hacker mindset to discover vulnerabilities in open-source software in their tech stack.

Read Post
mend

Developer Security Champions Rule the DevSecOps Revolution

Apr 22, 2021 By Julie Peterson In Mend

DevSecOps has fundamentally changed the way in which organizations approach security in modern software development. The role of developer security champion was created to meet the need for security to be tightly integrated into DevOps and DevSecOps practices. Read on to learn more about what developer security champions are and how they help promote secure coding best practices as organizations work toward continuous integration and delivery.

Read Post

What are the SIEM Pitfalls and how to avoid them? (SIEM: Benefits and Pitfalls Webinar cuts)

Apr 22, 2021 By LogSentinel In LogSentinel
Security Information and Event Management (SIEM) - What is it, why it matters for security and why do we need it? How simple logs can be turned into actionable insights? In this webinar we take a closer look at when is a #SIEM needed, what are SIEMs missing and when do they fail to provide value. We review concepts like alert fatigue, threat intelligence, audit log integrity, log privacy, and more.
View Video

What is a SIEM Software? (SIEM: Benefits and Pitfalls Webinar cuts)

Apr 22, 2021 By LogSentinel In LogSentinel
Security Information and Event Management (SIEM) - What is it, why it matters for security and why do we need it? How simple logs can be turned into actionable insights? In this webinar we take a closer look at when is a #SIEM​ needed, what are SIEMs missing and when do they fail to provide value. We review concepts like alert fatigue, threat intelligence, audit log integrity, log privacy, and more.
View Video

Copyright © 2024 OpsMatters™. All rights reserved.