Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

riscosity

Riscosity and Microsoft Azure: A Powerful Partnership for Data Security

Dec 16, 2024 By Jackson Harrower In Riscosity
This collaboration is a significant step forward in making robust data security accessible to all organizations. By leveraging the Azure Marketplace, we're empowering Azure customers to easily discover, deploy, and integrate Riscosity into their existing infrastructure. This seamless integration allows for a streamlined experience and faster time to value.
Read Post
securitysenses

Emerging Threats in Cybersecurity: Safeguarding Software from Evolving Risks

Dec 16, 2024 By SecuritySenses In SecuritySenses
In the digital-first landscape of today, cybersecurity threats are getting increasingly advanced and widespread, posing serious risks that could have adverse impacts on organizations the world over. Businesses are conducted through complex software systems and are increasingly susceptible to such attacks. Attackers continue refining their phishing scams and advanced persistent threats to exploit new vulnerabilities. Of the many, one such covert threat comprises malicious code, which recently has emerged as a permanent feature that requires proactive ways of lessening its impact.
Read Post
SecurityScorecard

A Day in the Life of a CISO: An Employee Email Discovered in a Password Dump

Dec 13, 2024 By SecurityScorecard In SecurityScorecard
The notification lands in my SecurityScorecard dashboard just as I’m wrapping up a meeting. An employee’s email address has shown up in a password dump on a dark web monitoring feed. Another day, another reminder of why cybersecurity is a full-contact sport.
Read Post
SecurityScorecard

Difference Between Supply Chain Detection & Response (SCDR) vs. Managed Detection and Response Services (MDR)

Dec 13, 2024 By SecurityScorecard In SecurityScorecard
In today’s cybersecurity landscape, organizations face an ever-growing variety of threats, many of which originate from their supply chains. Traditional cybersecurity measures like Managed Detection and Response (MDR) have been widely adopted, but newer, more advanced approaches like Supply Chain Detection and Response (SCDR) are redefining how businesses tackle external risks.
Read Post
SecurityScorecard

Day in the Life of a CISO: Evaluating a Plugin Vendor

Dec 13, 2024 By SecurityScorecard In SecurityScorecard
It’s mid-morning, and I’m making good progress when an email from a department head pops into my inbox. They’re thrilled about a new plugin that promises to streamline workflows for one of our most critical platforms. Naturally, they need me to sign off on the vendor’s security posture before they can move forward. I get it—business efficiency is important, but so is ensuring we don’t invite unnecessary risk into our environment.
Read Post
vanta

Why security questionnaires are a familiar-but ineffective-norm for assessing risk

Dec 12, 2024 By Vanta In Vanta
‍Security questionnaires are a standard part of almost every due diligence process before companies sign on to work with a new third party. ‍ By asking detailed questions via questionnaires, organizations learn about a seller’s security controls and compliance with relevant standards. With that information, they determine how and if a partnership with that third party will expand their attack surface and increase risk—and ultimately decide if the increased risk is acceptable.
Read Post
upguard

What is Cyber Threat Detection and Response?

Dec 12, 2024 By Edward Kost In UpGuard
To compete in an era of dynamic, multimodal cyberattacks, cybersecurity programs must become multidimensional, capable of simultaneously contending with a wide range of cyber threats. In this post, we explain how your organization can develop such a multipronged approach with a branch of cybersecurity known as cybersecurity threat detection.
Read Post
bitsight

Web Application Security for DevOps: Anti-CSRF and Cookie SameSite Options

Dec 12, 2024 By Chris Poulin In BitSight
This is a continuation of our series on web application security. If you haven't already read through parts 1 and 2, this is a good time to go back. If not, let's move on and answer the question left hanging during our last installment: what are request methods, including the POST request method, and how does logging out of a website work when it comes to cookies and session IDs? Let's also tackle the more important issue of how to combat cross-site request forgery (CSRF) attacks.
Read Post
upguard

What is Enterprise Attack Surface Management?

Dec 12, 2024 By Edward Kost In UpGuard
The rapid expansion of the digital landscape adds increasing complexity to cybersecurity, especially for enterprises that could have up to 100,000 vendors in their supply chain. Addressing these challenges requires implementing an Attack Surface Management (ASM) strategy tailored to enterprise businesses' unique risk profiles. This post outlines the importance of ASM for enterprises and offers a strategy for ensuring its effective implementation.
Read Post
SecurityScorecard

How SecurityScorecard's Supply Chain Detection and Response Protects Financial Institutions

Dec 12, 2024 By SecurityScorecard In SecurityScorecard
As financial institutions continue to expand their digital ecosystems, the growing reliance on third-party vendors and service providers introduces significant cyber risks. With a majority of data breaches linked to vulnerabilities in the supply chain, managing these risks has become a necessity.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.