Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Malware

DevOps backups vs. ransomware - best security and compliance practices

Oct 21, 2022 By GitProtect In GitProtect
Ransomware is still on the rise and does not bypass DevOps ecosystems and SaaS services. Backup is the final line of defense against ransomware so it should be ransomware-proof itself. Watch the video and check on how to ensure the security and continuity of operations in your DevOps environments. Join the discussion of Mackenzie Jackson, Developer Security Advocate at GitGuardian, and Greg Bak, Product Development Manager at GitProtect to learn more about.
View Video
Rubrik

Conquer the Three Battlegrounds of Modern Business Continuity and Disaster Recovery

Oct 20, 2022 By Rubrik In Rubrik

One of the most empowering documents in an organization’s arsenal is its business continuity and disaster recovery (BCDR) plan. Sure, it lays out in detail everything bad that could happen to your business, but it also provides point-by-point strategies to respond to each of those threats. Or does it? A good BCDR plan is a living document that evolves alongside the threats its organization faces. The trouble is that the world is changing fast, and BCDR teams are breathlessly trying to keep up.

Read Post
Trustwave

Archive Sidestepping: Self-Unlocking Password-Protected RAR

Oct 20, 2022 By Trustwave In Trustwave

Trustwave SpiderLabs’ spam traps have identified an increase in threats packaged in password-protected archives with about 96% of these being spammed by the Emotet Botnet. In the first half of 2022, we identified password-protected ZIP files as the third most popular archive format used by cybercriminals to conceal malware.

Read Post

Rubrik and GraphQL - Episode 6 - Using the Rubrik API Code Capture Extension

Oct 20, 2022 By Rubrik In Rubrik
Now that we understand how to form and execute our GraphQL calls, many have reached out asking how to automate certain tasks that are performed within the Rubrik Security Cloud UI. In this episode, I'll introduce you to the Rubrik API Code Capture extension for Chrome. If you know how to accomplish something within the UI, the Code Capture extension will show you the exact API call you need, including the query name and formation of the payload that you are sending! It's super easy to use and can save you a ton of time digging through documentation!
View Video
veracode

Despite Lowest Software Flaw Frequency, Manufacturing's Fix Times Lag and Create Ransomware Risk

Oct 19, 2022 By Jill Newberry Queenan In Veracode

In 2021, manufacturing became cybercriminals’ most targeted industry as a surge in global ransomware attacks disrupted manufacturing operations and exacerbated supply chain woes. This put even more pressure on manufacturing organizations that were already feeling the heat. Recognizing that ransomware attacks can stem back to software vulnerabilities, many manufacturers are exploring ways to strengthen their software security programs.

Read Post
Rubrik

Infrastructure Security is Not Enough to Defend Against Ransomware

Oct 18, 2022 By Rubrik In Rubrik

Register Now Let’s face it, you’re still vulnerable to ransomware. Even if it feels like you’ve done everything—you’ve built a robust defense, you have multiple cybersecurity measures in place, and you’ve implemented a company-wide security training. But, is it enough? Every business is vulnerable to ransomware. From the largest bank to the smallest school.

Read Post
Arctic Wolf

Why Auto Dealers Are Prime Targets for Ransomware Attacks

Oct 18, 2022 By Arctic Wolf In Arctic Wolf
It’s no secret that cyber attacks — especially ransomware attacks — are increasing across industries and organizations. Attack methods are evolving and rapid digitization, along with the rise of cloud computing and a remote workforce, are creating new threat vectors and exposing new vulnerabilities. One industry that has become a major target for attacks is the automotive industry.
Read Post

Cybersecurity Insights: Secure Your Clients Against Ransomware

Oct 18, 2022 By WatchGuard In WatchGuard
Ransomware attacks are dramatically increasing in number and frequency year over year, with high-impact, headline-making incidents continuously growing in volume and scope. Ransomware gangs are also looking at their primary victim’s business partners to pressure them into paying a ransom to prevent data leakages or business disruptions caused by the attack.
View Video
splunk

Dark Crystal RAT Agent Deep Dive

Oct 18, 2022 By Splunk Threat Research Team In Splunk

The Splunk Threat Research Team (STRT) analyzed and developed Splunk analytics for this RAT to help defenders identify signs of compromise within their networks. Remote Access Trojans (RATs) are one of the most common tools used by threat actors as a malicious payload to attack targeted hosts and steal information. One example is the Dark Crystal RAT (DCRat) that is capable of remote access, post exploitation and data exfiltration.

Read Post
alienvault

Stories from the SOC: Feeling so foolish - SocGholish drive by compromise

Oct 17, 2022 By Ken Ng In AT&T Cybersecurity

SocGholish, also known as FakeUpdate, is a JavaScript framework leveraged in social engineering drive by compromises that has been a thorn in cybersecurity professionals’ and organizations’ sides for at least 5 years now. Upon visiting a compromised website, users are redirected to a page for a browser update and a zip archive file containing a malicious JavaScript file is downloaded and unfortunately often opened and executed by the fooled end user.

Read Post

Copyright © 2024 OpsMatters™. All rights reserved.