Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

How To Reduce Your Attack Surface with Secure Password Management

May 26, 2025 By Keeper Security In Keeper
With the rise of remote work, cloud computing and mobile devices, your organization’s attack surface is larger than ever. Watch this short video to learn what an attack surface is, how to identify security vulnerabilities and five ways to minimize your attack surface.
View Video
manageengine

The Change Healthcare hack wasn't just a breach-it was a wake-up call

May 26, 2025 By Hari Kumar Selvanarayanan In ManageEngine
"The US healthcare system is broken" is not an uncommon phrase. With no universal healthcare coverage, administrative inefficiencies, and an under-resourced primary care system, it's so bad that falling ill could very well bankrupt a citizen.
Read Post

Layer 7 DDoS Attacks: How Hackers Target the Application Layer

May 23, 2025 By Indusface In Indusface
Layer 7 DDoS attacks—also known as application-layer attacks—target the part of your application that users interact with, like login pages, search boxes, and APIs. Unlike traditional volumetric DDoS attacks, these are stealthy, harder to detect, and can take down your app using fewer requests.
View Video

What is NoSQL Injection? | Examples & How to Prevent It

May 23, 2025 By Indusface In Indusface
NoSQL Injection is a serious web security flaw that targets NoSQL databases like MongoDB. In this video, you’ll learn: What NoSQL injection is How attackers exploit unsanitized inputs Real-world NoSQL injection examples Best practices to prevent these attacks Secure your applications with proper input validation and safe query building techniques.
View Video
fidelis security

Effective Deception for Zero Day Attacks: Strategies for Cyber Defense

May 23, 2025 By Fidelis Security In Fidelis Security
Deception for Zero day attacks has become a crucial strategy as these devastating exploits continue to surge rapidly. These attacks pose extreme danger because they target vulnerabilities unknown to software vendors or the public, which leaves systems defenseless without immediate patches. Attackers can exploit these vulnerabilities undetected for extended periods – from days to years. This creates a huge window for attacks before vendors can patch the problems.
Read Post
safeaeon

One SQL Injection Could Bring Down Your App. Here's How to Prevent It

May 23, 2025 By SafeAeon Inc. In SafeAeon
SQL Injection represents the most common web application vulnerability, and justifiably so: it is the most dangerous. Attackers can inject SQL code into victims' sites and access databases, potentially allowing unauthorized access and data compromise or, worst case, full-blown compromise of the site. Shielding one's website against SQL injections would mean having to understand how SQL injections work and implement preventive measures against them.
Read Post
wallarm

Attackers Abuse TikTok and Instagram APIs

May 22, 2025 By Wallarm In Wallarm
It must be the season for API security incidents. Hot on the heels of a developer leaking an API key for private Tesla and SpaceX LLMs, researchers have now discovered a set of tools for validating account information via API abuse, leveraging undocumented TikTok and Instagram APIs. The tools, and assumed exploitation, involve malicious Python packages - checker-SaGaF, stein lurks, and inner core - uploaded to PyPI.
Read Post
WatchGuard

M&S and Co-op Cyber Attacks: A Wake-Up Call for Every Business

May 21, 2025 By Oli Venn In WatchGuard
In recent weeks, UK retail giants Marks & Spencer and the Co-op have faced serious cyber attacks that disrupted operations and compromised customer data. M&S had to suspend online orders, and both retailers experienced stock issues – all while hackers accessed personal information, though thankfully not payment details. The Co-op narrowly avoided a full-scale ransomware attack. These incidents weren’t isolated or opportunistic.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.