Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Over the last year, we have continued to witness web shells breaching organizations worldwide, affecting both edge devices and on-premise web applications. Web shells consistently evade standard controls, posing a persistent threat. Today, the Splunk Threat Research Team is excited to announce the final tool in the ShellSweep collection: ShellSweepX.

The Cybersecurity Maturity Model Certification (CMMC) framework is undergoing a significant transformation with the introduction of CMMC 2.0. This revamped approach aims to streamline compliance, reduce costs, and enhance the overall security posture of the defense industrial base (DIB). CMMC is a framework developed by the U.S. Department of Defense (DoD) to assess and certify the cybersecurity posture of its contractors and subcontractors.

Most modern organizations run on SaaS applications, and many use them to store sensitive data. The global SaaS market reached a total value of $206 billion in 2023, and is expected to climb to $247 billion by the end of 2024. Organizations must employ a complex system of practices to keep their SaaS apps secure and their data safe. Because SaaS apps are delivered through the cloud, they must be managed and secured differently than other types of software.

Think about how many employees work at your organization. Now think about how many sensitive files each one can access. A single compromised user account could lead to an extortion scam, a ransomware attack, or even a data breach. If you haven’t reviewed your account takeover protection protocols in a while, now is the time. Account takeover (ATO) protection is not a single countermeasure, but rather a whole set of cybersecurity measures.

You may be receiving an increase in spam calls if your phone number is on the dark web or people search sites, if you’ve answered spam calls in the past or if your phone number was leaked in a data breach. Spam calls are unwanted calls that could be from telemarketers, robocallers or scammers. Although some spam calls are simply unsolicited, scam calls fall under the category of spam calls but are different due to their malicious nature.

Security Information and Event Management (SIEM) is a critical tool in modern cybersecurity, combining Security Information Management (SIM) and Security Event Management (SEM) to provide real-time monitoring, threat detection and incident response. Obrela’s SIEM solutions collect and analyse security data from various sources to provide a comprehensive view of the security landscape.

Backups and snapshots are two popular technologies that enterprises use to mitigate data loss and minimize disruptions. In fact, backups and DR remain a top priority for organizations in 2023 to protect their data and mitigate the consequences of cyber threats and other incidents. Snapshots and backups may seem to serve the same purpose at first glance since they both allow you to recover data. However, snapshots are not a replacement for backups.

We’re trying to answer all the privacy questions employees might have around their company’s ability to view messages and data within Slack.

For companies looking to get SOC 1 or 2 compliant, it can be hard to find out where to start, so we’re providing a straightforward guide to the ins and outs of SOC audits.

File Integrity Monitoring (FIM) is a cybersecurity process that involves continuously monitoring files and systems to identify any unauthorized changes. FIM solutions maintain file integrity by comparing a file or system's current state to a known, trusted baseline and flagging any discrepancies. It is key for identifying security breaches, preventing data tampering, and maintaining compliance.