Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

%term

Arctic Wolf

CVE-2024-28988: Critical Java Deserialization RCE Vulnerability Impacts SolarWinds Web Help Desk

Oct 18, 2024 By Andres Ramos In Arctic Wolf
On October 15, 2024, SolarWinds released a hotfix for CVE-2024-28988, a critical Remote Code Execution (RCE) vulnerability affecting Web Help Desk (WHD). WHD is an IT service management software widely used across various industries for tracking and managing support tickets. This vulnerability arises from a Java deserialization flaw, which could enable a remote unauthenticated attacker to execute arbitrary code on vulnerable hosts.
Read Post
knowbe4

FBI Warns Scammers Are Targeting Law Firms For Phony Debt Collections

Oct 18, 2024 By Stu Sjouwerman In KnowBe4
The U.S. FBI warns that scammers are attempting to trick law firms into transferring money as part of a phony debt collection scheme. The scam “may focus on any type of representation where a lawyer is hired to assist in the transfer or collection of money, e.g. real estate, collection matters, collaborative law agreements in family matters, etc.” The schemes typically take the following steps: The FBI outlines some recommendations to help organizations avoid falling for these scams.
Read Post
knowbe4

Phishing Attacks Are Abusing Legitimate Services to Avoid Detection

Oct 18, 2024 By Stu Sjouwerman In KnowBe4
Microsoft warns that threat actors are abusing legitimate file-hosting services to launch phishing attacks. These attacks are more likely to bypass security filters and appear more convincing to employees who frequently use these services. “Legitimate hosting services, such as SharePoint, OneDrive, and Dropbox, are widely used by organizations for storing, sharing, and collaborating on files,” Microsoft says.
Read Post
protegrity

DORA Compliance: Key Insights for Financial Institutions on New EU Regulations

Oct 18, 2024 By Protegrity In Protegrity
As the January 2025 deadline approaches, financial institutions across the European Union prepare to increase their financial data security by meeting regulatory compliance standards with the Digital Operational Resilience Act (DORA). But what exactly is DORA, and why does it matter for your organisation? Let’s take a closer look.
Read Post

Converge 2024 Labs - Revolutionizing Patch Operations with ServiceNow & Tanium - Tech Talks #108-3

Oct 18, 2024 By Tanium In Tanium
Revolutionizing Patch Operations with ServiceNow and Tanium Many IT Operations teams spend countless hours submitting change requests for their patching activities. Imagine a world where IT Ops staff can save time by opening changes for their patch activities in ServiceNow and have them be scheduled automatically after they are approved. The future is now! In this hands-on lab, participants will have access to their own Tanium and ServiceNow environments to perform an automated monthly patching cycle orchestrated by ServiceNow.
View Video
riscosity

How to Safely Integrate LLMs Into Enterprise Applications and Achieve ISO 42001 Compliance

Oct 18, 2024 By Jackson Harrower In Riscosity
Enterprise applications, whether on-premise or in the cloud, access LLMs via APIs hosted in public clouds. These applications might be used for content generation, summarization, data analysis, or a plethora of other tasks. Riscosity’s data flow posture management platform protects sensitive data that would otherwise be accessible to LLM integrations.
Read Post
indusface

8 Compliance Challenges Enterprises Face in 2024

Oct 18, 2024 By Chandan Pani In Indusface
Compliance is a critical concern for businesses today, but navigating the rules can be overwhelming. With regulations constantly evolving, many organizations struggle to keep up. I had the opportunity to participate in a recent virtual panel with Ashish Tandon, Founder & CEO of Indusface. Over the years, I have consulted with multiple large enterprises across geographies and industries. Below are the top challenges that they face as far as compliance is concerned.
Read Post

Copyright © 2024 OpsMatters™. All rights reserved.