Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

%term

Forward Networks

Navigating the New Era of ISO 27001: Insights for IT and Security Leaders

Aug 13, 2024 By Renata Budko In Forward Networks
In our border and perimeter free world, connected infrastructure becomes more and more complex. Security tools need to keep up by adjusting to the new application delivery models and adapting to the shifting threat environment. That's why the recent update to the ISO 27001 compliance standard is so pivotal — it introduces new controls around data security, DevOps, and network security to help future-proof our cybersecurity strategies.
Read Post
Forescout

Cybersecurity Teams, It's Time to End the Dept. of 'No'

Aug 13, 2024 By Rik Ferguson In Forescout
In a never-ending effort to do their job and secure their environments, cybersecurity teams often bear the brunt of negative perceptions, labelled as the department of ‘No.’ “No” to admin privileges, “No” to personal devices, and “No” to connecting unapproved technologies. These repeated denials, although done with the best intentions, can stifle innovation and create frustration within organizations. This perception needs to change.
Read Post
Arctic Wolf

CVE-2024-7593 & CVE-2024-7569: Critical Vulnerabilities Impacting Ivanti Virtual Traffic Manager and Neurons for ITSM

Aug 13, 2024 By Andres Ramos In Arctic Wolf
On August 12, 2024, Ivanti announced a critical authentication bypass vulnerability in its Virtual Traffic Manager (vTM), identified as CVE-2024-7593. Ivanti Virtual Traffic Manager (vTM) is a software-based application delivery controller that manages traffic flow to ensure high performance, availability, and security for web applications.
Read Post
redscan

Top 5 Cyber Security Threats in Manufacturing

Aug 13, 2024 By Mark Nicholls In Redscan
From email compromise to insider threat, manufacturing businesses are under pressure to defend themselves effectively from threats across their environment. Drawing on insights from the recent Kroll report, The State of Cyber Defense: Manufacturing Resilience, this article outlines the primary threats currently impacting manufacturing companies.
Read Post
knowbe4

Chameleon Malware Poses as CRM App

Aug 13, 2024 By Stu Sjouwerman In KnowBe4
Researchers at ThreatFabric warn that a phishing campaign is distributing the Chameleon Android malware by impersonating a Customer Relationship Management (CRM) app. The campaign is currently targeting users in Canada and Europe, but may expand to other regions. “The naming used for the dropper and the payloads clearly shows that the intended victims of the campaign are hospitality workers and potentially B2C business employees in general,” ThreatFabric says.
Read Post
splunk

What Is Digital Forensics? The Weapon Against Cybercrime

Aug 13, 2024 By Kayly Lange In Splunk
In 2016, a house in Middle, Ohio, went up in flames. The owner of the home, Ross Compton, claimed he was asleep when the fire broke out, waking just in time to hastily pack a suitcase, smash his bedroom window, and make an escape. However, the very technology keeping Compton alive unraveled his alibi and led to his arrest. Compton had a pacemaker, and the police, suspicious of his account, secured a warrant to access its data.
Read Post
outpost 24

CSRF simplified: A no-nonsense guide to Cross-Site Request Forgery

Aug 13, 2024 By Jimmy Bergqvist In Outpost 24
Cross-Site Request Forgery (CSRF) is a serious web security vulnerability that allows attackers to exploit active sessions of targeted users to perform privileged actions on their behalf. Depending on the relevancy of the action and the permissions of the targeted user, a successful CSRF attack may result in anything from minor integrity impacts to a complete compromise of the application.
Read Post
Octiga

Octiga secures France & French speaking distribution with Watsoft

Aug 13, 2024 By Octiga In Octiga
We’re delighted to announce that Octiga, the multi-tenant Microsoft 365 security platform for MSPs, is now available to MSPs and MSSPs operating in France and French speaking African territories. Bordeaux based Watsoft, a French value-added IT distributor, is now Octiga distributor for these regions.
Read Post
CalCom

MadLicense CVE-2024-38077 RCE Threatens All Windows Servers

Aug 13, 2024 By John Gates In CalCom
The latest CVE-2024-38077 Remote Code Execution vulnerability (RCE) and coined MadLicense has been rated as absolutely critical with a CVSS 3.1 score of 9.8. The Windows Remote Desktop Licensing (RDL) service has a vulnerability that enables network attacks with low complexity, affecting all versions of Windows Server from 2000 to 2025 (all Windows Servers).
Read Post
securitysenses

Thwarting Cyberattacks: Top In-House Solutions

Aug 13, 2024 By SecuritySenses In SecuritySenses
There is no doubt that the number (and severity) of cyberattacks is on the rise. While the lion's share of attention has been devoted to major breaches that often impact multinational organisations, the fact of the matter is that small- to medium-sized enterprises are also at risk. This is why managers and stakeholders must adopt the latest safety protocols to avoid incidents that might otherwise quickly bring operations to a halt. Let us look at four practical suggestions, and the unique benefits associated with each.
Read Post

Copyright © 2024 OpsMatters™. All rights reserved.