Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

%term

bitsight

2024 Bitsight Ratings Algorithm Update: Purpose, Observations, and Impact

Jun 27, 2024 By Abdullah Al Rashid, Xiaofei Yang, and Francisco Almeida In BitSight
As our 2024 Rating Algorithm Update (RAU) goes live on July 10, 2024, we wanted to share some research that validates this update and reinforces the importance of the RAU process. As we noted in our announcement blog, after RAU 2024, remediated Patching Cadence findings will impact the Bitsight Rating for 90 days after the last vulnerable observation instead of 300 days.
Read Post

Simplifying FedRAMP Compliance with Teleport

Jun 27, 2024 By Teleport In Teleport
FedRAMP compliance is notoriously challenging, but it doesn't have to derail your DevOps flow or tech stack. Discover how Teleport’s robust infrastructure access and security platform addresses some of the toughest questions and hurdles in the FedRAMP process, empowering engineering, compliance, and security leaders to implement and enforce security controls seamlessly.
View Video
apono

Snowflake Breach Attack Insights

Jun 27, 2024 By Ofir Stein In Apono
The recent attack on Snowflake accounts underscores a critical lesson for all cloud users: securely managing identities and access is paramount under the shared responsibility model. As more organizations leverage cloud services, it’s essential to understand that security is a collaborative effort between the service provider and the customer.
Read Post
bluevoyant

BlueVoyant Awarded Microsoft Worldwide Security Partner of the Year, Recognizing Leading-Edge Cyber Defense

Jun 27, 2024 By Milan Patel In BlueVoyant
We are over the moon to share that BlueVoyant has been awarded the Microsoft Worldwide Security Partner of the Year, demonstrating our leading-edge cyber defense capabilities and our strong partnership with Microsoft. We have also been recognized as the Microsoft United States Security Partner of the Year for the third time, and the Microsoft Canada Security Partner of the Year for the first time.
Read Post

Reducing Storage Spend: The CISOs Guide to Efficient and Effective Security Operations

Jun 27, 2024 By LimaCharlie In LimaCharlie
As data volumes grow exponentially, CISOs face the mounting challenge of managing storage costs without compromising security. Storing vast amounts of security data can quickly become cost-prohibitive, and inefficient storage solutions can lead to budget overruns. This webinar will explore how LimaCharlie can help reduce storage spend while maintaining robust security measures.
View Video
idcentral

Identity Theft and Fraud: Types and Prevention Strategies

Jun 27, 2024 By Mohini Sahu In IDcentral
In 2023, identity theft and fraud reached significant levels, with various reports highlighting the extensive impact on consumers and businesses. The Federal Trade Commission (FTC) reported that consumers lost more than $10 billion to fraud, marking a 14% increase from the previous year. Identity theft remained a pervasive issue, with nearly 560,000 cases reported in the first half of 2023 alone.
Read Post
indusface

How to Prevent DDoS Attacks? [ 17 Best Practices]

Jun 27, 2024 By Venkatesh Sundar In Indusface
In 2021, Amazon suffered a financial setback of around $34 million due to a one-hour system outage that led to a considerable loss in sales. Meta suffered a loss of nearly $100M because of Facebook’s 2021 outage. The consequences of downtime can be severe, and businesses of all sizes and governments can be affected. A DDoS attack can bring a business to a complete standstill for hours, leading to a substantial loss in revenue.
Read Post
levelblue

Memory Dump Analysis: Using LiME for Acquisition and Volatility for Initial Setup

Jun 27, 2024 By Kushalveer Singh Bachchas In LevelBlue
Memory dump analysis is a crucial aspect of digital forensics, offering a snapshot of a system's volatile memory at a specific point in time. This can uncover critical evidence such as running processes, open network connections, and in-memory malware execution that disk analysis might miss. In a previous blog, we learnt how to use fmem for volatile memory acquisition.
Read Post

Building a Human-Centric Vulnerability Management Program

Jun 27, 2024 By Nucleus In Nucleus
Steve Carter, CEO and co-founder of Nucleus Security, and Dr. Nikki Robinson, Security Architect at IBM, discuss the importance of the people side of vulnerability management. They explore challenges such as context switching, long mean time to remediation, and the impact of communication on vulnerability management programs. The conversation includes practical advice on incorporating human factors into cybersecurity practices, how to improve communication and collaboration among teams, and why understanding human factors is crucial for effective vulnerability management.
View Video

Copyright © 2024 OpsMatters™. All rights reserved.