Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

%term

sumologic

Rule tuning - supercharge Cloud SIEM for better alerts

Jul 2, 2024 By Paul Sheck In Sumo Logic
We’ve seen the movies where the character needs to get out of a jam or needs to get somewhere in a hurry, so they mash the big button of Nitrous Oxide and boom they are off! Fast and the Furious and Boss Level are the two movies that come to mind. So, how does this relate to a SIEM or SIEM rules? Sit down, buckle up, and let’s go for a ride.
Read Post
vista infosec

Chip maker launches probe into data theft amid cybersecurity concerns

Jul 2, 2024 By Narendra Sahoo In VISTA InfoSec
American chip giant Advanced Micro Devices, Inc. (AMD) announced that it has launched a probe of a data breach carried out by a cybercriminal group called Intelbroker that led to several private documents and information being stolen which occurred early this month. In a statement to media outlets, the company spokesperson said that it is working closely with the authorities and a third-party hosting partner to investigate the impact of the breach.
Read Post
splunk

regreSSHion: Uncovering CVE-2024-6387 in OpenSSH - A Critical Vulnerability

Jul 2, 2024 By Splunk Threat Research Team In Splunk
OpenSSH, an application installed by default on nearly every Unix-like and Linux system, has recently come under scrutiny due to a critical vulnerability discovered by Qualys. Designated as CVE-2024-6387 and aptly named "regreSSHion," this flaw exposes Linux environments to remote unauthenticated code execution. The implications of this vulnerability are far-reaching, potentially affecting countless servers and infrastructure components across the globe.
Read Post
netskope

How to Navigate Data Security in the GenAI Era

Jul 2, 2024 By Richard Davis In Netskope
Since its mainstream emergence in 2022, generative AI has triggered a seismic shift in data management and security. It is estimated that one in four employees now uses genAI apps daily, often unbeknownst to their employer and IT team. This raises concerns, as genAI is designed with a voracious appetite for consuming both mundane and sensitive data. Effectively securing your data as genAI becomes prevalent is a strategic imperative.
Read Post

Random but Memorable - Bonus Episode: Fireside Chat with Sara Teare & Adamaka Ajaelo

Jul 2, 2024 By 1Password In 1Password
Surprise! Tune in for our special bonus episode, as we host a founder-to-founder fireside chat. Join 1Password Founder, Sara Teare, and Self-eSTEM founder, Adamaka Ajaelo as they share their personal experiences as women in STEM careers and the things they've learned along the way. Settle in and learn how you can overcome some of the common challenges when working in the cybersecurity industry. We hope you enjoy this bonus episode!
View Video

Secrets in Plain Sight: Unveiling over 1 million secrets on public websites

Jul 2, 2024 By GitGuardian In GitGuardian
Join us at CodeSecDays for an insightful session with Cybernews researcher Vincentas Baubonis, who will reveal how their team discovered 1,141,004 secrets across 58,364 websites. Learn how exposed environment (.env) files containing passwords, API keys, and email credentials can lead to data breaches and site takeovers. We’ll discuss common leaked secrets like database credentials and AWS keys, and their impact, and share research methodology, ethical considerations, and steps to prevent exposure.
View Video
tripwire

Superior Integrity Monitoring: Getting Beyond Checkbox FIM

Jul 2, 2024 By Fortra Staff In Tripwire
Contrary to what one might expect, creating a File Integrity Monitoring (FIM) system is pretty easy. Practically anyone with a modicum of Python, Perl, or development skills can write an app or script to gather a file's checksum, compare it to a list or baseline, and tell you whether or not said file has changed. But creating a good FIM solution is hard. Many inadequate checkbox File Integrity Monitoring solutions are on the market because while detecting change is easy, reconciling it is not.
Read Post
sysdig

Want Your Third Parties To Take Security Seriously?

Jul 2, 2024 By Crystal Morin In Sysdig
In the last decade, outsourcing to third parties–especially in the gig economy–has taken over key functions that enterprises used to handle internally. Today’s companies are frequently virtual–using third-party services that span the likes of application development, back-office corporate functions, contract manufacturing and research, marketing, and core IT services.
Read Post
neosystems

How CMMC Will Improve Your Cybersecurity Posture

Jul 2, 2024 By Caitlin Bognar In NeoSystems
In the ever-evolving landscape of cybersecurity, safeguarding critical data from unauthorized access is paramount. Our recent webinar, “Shut the Front Door,” provided invaluable insights aimed at business leaders, operations executives, and IT managers within the government contracting community, emphasizing the necessity of robust access control measures and adherence to regulations like the FAR, DFARS, and NIST 800-171.
Read Post
Corelight

Detecting The Agent Tesla Malware Family

Jul 2, 2024 By Keith J. Jones In Corelight
Welcome to the latest from Corelight Labs! This blog continues our tradition of picking a popular malware family from Any.Run and writing a detector for it! Trending consistently at #1 on Any.Run’s malware trends list, Agent Tesla uses multiple protocols to communicate with its C2 infrastructure, making it more difficult to detect robustly than a malware sample utilizing only one network protocol for its C2.
Read Post

Copyright © 2024 OpsMatters™. All rights reserved.