%term

Cyberattack at Sisense Puts Critical Infrastructure on Alert

Apr 11, 2024 By SecurityScorecard In SecurityScorecard

The cybersecurity community woke up on Thursday to news of a cyberattack on Sisense, a major business analytics software company. It’s thought that the breach may have exposed hundreds of Sisense’s customers to a supply chain attack and provided the attacker with a door into the company’s customer networks.

Read Post

SecurityScorecard

Read more about Cyberattack at Sisense Puts Critical Infrastructure on Alert

Equivalency: The Latest FedRamp Memo From DoD

Apr 11, 2024 By Max Aulakh In Ignyte

The Federal Risk and Authorization Management Program has been around for nearly 15 years. In that time, it changed and was updated periodically to keep up with the times. While changes are occasionally made to the underlying security frameworks like FedRAMP, CMMC and the NIST documentation that reviews each security control, there is also communication directly from the Department of Defense and other organizations to issue additional guidance.

Read Post

Ignyte

Read more about Equivalency: The Latest FedRamp Memo From DoD

Navigating the SecOps Cloud Platform Revolution for Service Providers

Apr 11, 2024 By LimaCharlie In LimaCharlie

In a world where digital transformation has become the norm, cybersecurity professionals face unprecedented challenges. The traditional approach of managing dozens of disparate point solutions and siloed security tools, while attempting to control costs, is no longer sufficient. It's time to embrace a new era of cybersecurity in the SecOps Cloud Platform – one that treats cybersecurity as a set of capabilities much like how cloud providers did for IT. We challenge you to question the status quo and to open your mind a new way of thinking about security operations.

View Video

LimaCharlie

Read more about Navigating the SecOps Cloud Platform Revolution for Service Providers

Navigating the SecOps Cloud Platform Revolution for Product Builders

Apr 11, 2024 By LimaCharlie In LimaCharlie

In a world where digital transformation has become the norm, cybersecurity professionals face unprecedented challenges. The traditional approach of managing dozens of disparate point solutions and siloed security tools, while attempting to control costs, is no longer sufficient. It's time to embrace a new era of cybersecurity in the SecOps Cloud Platform – one that treats cybersecurity as a set of capabilities much like how cloud providers did for IT. We challenge you to question the status quo and to open your mind a new way of thinking about security operations.

View Video

LimaCharlie

Read more about Navigating the SecOps Cloud Platform Revolution for Product Builders

DevOps Security Challenges and Best Practices

Apr 11, 2024 By Aranza Trevino In Keeper

Some of the challenges when adopting DevOps security, also known as DevSecOps, are placing too much focus on tools rather than processes, cultural resistance, weak access controls and poor secrets management. While implementing DevOps security comes with its challenges, there are several best practices organizations can follow to make its implementation as effective and seamless as possible, including proper change management, combating secrets sprawl and following the principle of least privilege.

Read Post

Keeper

Read more about DevOps Security Challenges and Best Practices

New Tanium Security Operations for ServiceNow Gives Organizations a Powerful Cybersecurity Solution

Apr 11, 2024 By Tanium In Tanium

This new solution empowers IT security and operations teams to identify, correlate, prioritize, and remediate risk of endpoint vulnerabilities and security incidents in real time.

Read Post

Tanium

Read more about New Tanium Security Operations for ServiceNow Gives Organizations a Powerful Cybersecurity Solution

Top 10 free pen tester tools

Apr 11, 2024 By Natalie Lightner In Synopsys

A craftsman requires the appropriate skills and tools to work in tandem in order to create a masterpiece. While tools are an important enabler in the process of creating the best piece of work possible, the process also requires relevant experience and expertise on the part of the craftsman. Much like craftsman’s toolbox, a pen tester’s toolbox has wide variety of pen tester tools to work with based on the business objective.

Read Post

Synopsys

Read more about Top 10 free pen tester tools

Controversy and Criticism: Navigating Resistance to Cyber Risk Clarification | Razorthorn Security

Apr 11, 2024 By Razorthorn In Razorthorn

Dive into the contentious realm of cyber risk clarification in this eye-opening video. Explore the challenges faced by proponents of risk assessment methodologies as they encounter resistance from influential figures in the industry. Hear about the shocking experiences of individuals who have been met with accusations of criminal negligence simply to advocate for clearer risk communication. Despite the pushback, join us as we navigate through the discourse and strive to shed light on the importance of cyber risk understanding and mitigation.

View Video

Razorthorn

Security

Read more about Controversy and Criticism: Navigating Resistance to Cyber Risk Clarification | Razorthorn Security

Three Ways To Remove Complexity in TDIR

Apr 11, 2024 By The Graylog Team In Graylog

Gartner identified security technology convergence as one of the key trends both in 2022 and 2023 as a necessity to remove complexity in the industry. Especially for Threat Detection and Incident Response (TDIR), simplification continues to resonate with cyber teams overwhelmed by too many tools and the continuous cutting and pasting from one tool to another.

Read Post

Graylog

Read more about Three Ways To Remove Complexity in TDIR

Hunting Impacket: Part 1

Apr 11, 2024 By SnapAttack In SnapAttack

Impacket is a collection of Python classes focused on providing tools to understand and manipulate low-level network protocols. This capability enables you to craft or decode packets of a wide variety of protocols such as IP, TCP, UDP, ICMP, and even higher-level protocols like SMB, MSRPC, NetBIOS, and others.

Read Post

SnapAttack

Read more about Hunting Impacket: Part 1

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

%term

Cyberattack at Sisense Puts Critical Infrastructure on Alert

Equivalency: The Latest FedRamp Memo From DoD

Navigating the SecOps Cloud Platform Revolution for Service Providers

Navigating the SecOps Cloud Platform Revolution for Product Builders

DevOps Security Challenges and Best Practices

New Tanium Security Operations for ServiceNow Gives Organizations a Powerful Cybersecurity Solution

Top 10 free pen tester tools

Controversy and Criticism: Navigating Resistance to Cyber Risk Clarification | Razorthorn Security

Three Ways To Remove Complexity in TDIR

Hunting Impacket: Part 1

Monthly Archive

Follow Us