Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

%term

foresiet

WazirX Cyberattack: A Major Blow to the Indian Cryptocurrency Market

Jul 19, 2024 By Foresiet In Foresiet
On Wednesday night, the Indian cryptocurrency platform WazirX experienced a significant cyberattack, resulting in the theft of at least $230 million worth of cryptocurrency. The breach was first detected by several blockchain security companies, including Elliptic, Arkham, and BlockSec. These firms observed large amounts of digital coins being siphoned out of WazirX before the platform acknowledged the security breach.
Read Post
Rubrik

CrowdStrike & Rubrik Customer Content Update Recovery For Windows Hosts

Jul 19, 2024 By Joshua Stenhouse In Rubrik
Joint customers utilizing Rubrik for immutable backup are recommended to utilize Rubrik in-place recoveries for impacted Windows VMware Virtual Machines (VMs), standard VM restores for Azure VMs, AWS EC2 instances, and live mounts for Hyper-V and AHV VMs. For VMware VMs this significantly reduces the recovery time by only recovering the changed blocks required to revert the VM to a snapshot before the 04:09 UTC CrowdStrike host update.
Read Post
redscan

A guide to the OWASP TOP 10 for large language model applications

Jul 19, 2024 By Mark Nicholls In Redscan
Attackers are increasingly targeting vulnerabilities within large language models (LLMs) used to recognise and generate text. In response to the growing risk, the recently launched OWASP Top 10 for LLMs covers the key vulnerabilities within these types of AI applications. Read our guide to learn more about the most critical vulnerabilities and how to reduce AI security risks.
Read Post

Friday Flows episode 28: Sending an IOC to Recorded Future for Analysis

Jul 19, 2024 By Tines In Tines
On today's episode, Michael Tolan from the Tines labs team is taking us through this enrichment workflow. Recorded Future is our long-time threat intel partner and has been the leader in that space for years now. This will give you some insight into how we work better together.
View Video
Trustwave

How Cybercriminals Use Breaking News for Phishing Attacks

Jul 19, 2024 By Trustwave In Trustwave
Trustwave SpiderLabs issued a warning that threat actors may attempt to take advantage of CrowdStrike’s software update that caused widespread outages by using the news as the center of a social engineering scheme to convince people to open malicious phishing emails or fall for other types of attacks. Using this news cycle is nothing new.
Read Post
securitysenses

What are Microsoft Power Apps, and What are their Use Cases?

Jul 19, 2024 By SecuritySenses In SecuritySenses
Microsoft Power Apps is a low-code application development platform that allows businesses to quickly build custom web and mobile apps for their organizations without writing code. Power Apps provides a graphical interface and drag-and-drop tools to design and connect apps to existing business data and systems.
Read Post
securitysenses

The Importance of Know Your Business (KYB) in the Fintech World

Jul 19, 2024 By SecuritySenses In SecuritySenses
In the dynamic and rapidly evolving fintech industry, regulatory compliance and risk management are crucial for maintaining trust and ensuring sustainability. One critical component of this regulatory framework is the Know Your Business (KYB) process. KYB involves verifying the legitimacy and credentials of business clients and partners, ensuring they are who they claim to be, and assessing their potential risks. In the fintech world, KYB is essential for mitigating fraud, ensuring compliance with regulations, and fostering a trustworthy ecosystem.
Read Post
chaossearch

The Top 5 Security Logging Best Practices to Follow Now

Jul 18, 2024 By David Bunting In ChaosSearch
Security logging is a critical part of modern cybersecurity, providing the foundation for detecting, analyzing, and responding to potential threats. As highlighted by OWASP, security logging and monitoring failures can lead to undetected security breaches. With the average cost of a data breach adding up to $4.45 million, most organizations can’t afford to miss a security incident.
Read Post
netacea

Follow the Crypto Part 2: Tools and Techniques for Investigating Cryptocurrency Transactions

Jul 18, 2024 By Threat Research Team In Netacea
In part one of our “Follow the Crypto” series, we highlighted the growing need for cryptocurrency investigations in the fight against fraud. We discussed the hurdles that investigations face, from the anonymous nature of transactions to the complexity of analyzing blockchain data, but also noted some famous successful investigations.
Read Post
netskope

Streamline Compliance and Strengthen Data Protection Using Netskope's Integration with the ChatGPT Enterprise Compliance API

Jul 18, 2024 By Melody Nouri In Netskope
In the ever-evolving landscape of AI, maintaining compliance standards and ensuring secure usage of generative AI applications remains an important priority for enterprises. Across the globe, regulatory frameworks like the European Union’s AI Act have been established to ensure that AI systems are developed and deployed in a manner that prioritizes safety, transparency, ethics, and fundamental rights.
Read Post

Copyright © 2024 OpsMatters™. All rights reserved.