Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Latest Posts

CrowdStrike

Protect Your Weakest Link: New Account Linking Capabilities Use AI to Thwart Identity-Based Attacks

Oct 24, 2024 By Mickey Brautbar - Brenden Bishop - Lucia Stanham In CrowdStrike
As networks become increasingly distributed, user identities are becoming a top adversary target. CrowdStrike’s 2024 Threat Hunting Report and 2024 Global Threat Report state 5 of the top 10 MITRE tactics we observed in 2023 were identity-based, and the CrowdStrike 2023 Threat Hunting Report noted a 583% year-over-year increase in Kerberoasting attacks. These findings illustrate how modern adversaries aren’t breaking in — they’re logging in.
Read Post
Arctic Wolf

CVE-2024-47575: Critical Vulnerability in FortiNet FortiManager Under Active Exploitation

Oct 24, 2024 By Andres Ramos In Arctic Wolf
On October 23, 2024, Fortinet published an advisory disclosing an actively exploited vulnerability (CVE-2024-47575) affecting FortiManager and FortiManager Cloud. The critical-severity vulnerability can be exploited on FortiManager instances exposed to the internet via port 541. Successful exploitation could allow a remote, unauthenticated threat actor to execute arbitrary code or commands via specially crafted requests.
Read Post
tripwire

NotLockBit: Ransomware Discovery Serves As Wake-Up Call For Mac Users

Oct 24, 2024 By Graham Cluley In Tripwire
Historically, Mac users haven't had to worry about malware as much as their Windows-using cousins. Although malware targeting Apple devices actually predates viruses written for PCs, and there have been some families of malware that have presented a significant threat for both operating systems (for instance, the Word macro viruses that hit computers hard from 1995 onwards), it is generally the case that you're simply a lot less likely to encounter malware on your Mac than you are on your Windows PC.
Read Post
vanta

New frameworks and updates to help European companies achieve compliance faster

Oct 24, 2024 By Vanta In Vanta
To build customer trust, companies doing business in Europe must establish and maintain compliance with cybersecurity frameworks. However, changing regulations and new frameworks make managing compliance even more complex and burdensome for overworked security teams. To stay ahead and compete on a global stage, European companies need the right technology, local expertise, and trusted partnerships. That’s where Vanta comes in. ‍
Read Post
idstrong

Corporate Fraud: Detection, Prevention, and the Role of Corporate Fraud Attorneys

Oct 24, 2024 By Steven In IDStrong
The growing scale of organizations and the more opportunities to push the boundaries have led to an upsurge in corporate fraud in recent years. Fraud can be a deceptive action taken against a company or one carried out by the company. A company could commit fraud in many ways to improve its industry reputation and defend itself from audits. On the other side, a company may become a victim of financial statement fraud, asset theft, and corruption committed by its staff members.
Read Post
securitysenses

How Parking Technology Enhances Cybersecurity

Oct 24, 2024 By SecuritySenses In SecuritySenses
Parking lots are a staple of our daily routines - whether we're shopping, working, or visiting. This is where we spend considerable amounts of time surrounded by cars and people. Given the high foot traffic and density of vehicles, enhancing the safety and security of these spaces is crucial for businesses looking to create a secure and enjoyable experience for their customers. Here, technology plays a pivotal role in supporting this endeavor, offering solutions that enhance safety, privacy, and cybersecurity.
Read Post
manageengine

Why is an effective IPAM strategy crucial for enterprise networks?

Oct 23, 2024 By OpUtils In ManageEngine
As businesses expand, their networks become increasingly complex, encompassing on-premises devices, remote workstations, cloud services, and IoT devices. This growth, coupled with rising cloud adoption, puts immense strain on the process of maintaining a stable and secure infrastructure. In today’s hyper-connected world, even a brief network outage or security breach can result in significant financial losses, operational downtime, and reputational damage.
Read Post
splunk

The Forensic Investigator Role: Skills and Responsibilities

Oct 23, 2024 By Laiba Siddiqui In Splunk
Businesses adopt new and sophisticated technology every day. All that tech, however, comes with the risk of crime or financial fraud. That’s what forensic investigators help with — they solve these crimes by identifying the criminals and recovering the assets. Forensic investigators collect evidence from crime scenes, analyze it, and conclude the results in a report that later serves as an important document in trials.
Read Post
splunk

What Is DFIR? Digital Forensics & Incident Response

Oct 23, 2024 By Laiba Siddiqui In Splunk
We all know how often attackers gain access to online devices to compromise security. That’s why digital defense is as important as physical defense. However, ensuring digital safety can be more challenging than physical safety. To overcome this problem, authorities combine digital forensics with incident response. But what does this mean?
Read Post

Copyright © 2024 OpsMatters™. All rights reserved.