Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Trustwave

Why Your CMMC Service Provider Should be Fully FedRAMP Authorized

Apr 22, 2025 By Trustwave In Trustwave
How Trustwave’s FedRAMP Authorization Removes the Burden of CMMC Federal Compliance from Clients Navigating the labyrinth that is the US federal procurement system, particularly for Defense Industrial Base (DIB) companies, can be difficult. Particularly when these organizations should meet specific cybersecurity compliance standards like Cybersecurity Maturity Model Certification (CMMC).
Read Post

Take the fear out of phishing response: Lessons from Material Security

Apr 22, 2025 By Tines In Tines
For modern security teams, phishing remains one of the most persistent and resource-intensive challenges their organizations face. But automating the detection and response to phishing attacks not only saves time, but also reduces errors and strengthens your organization's overall defense.
View Video

Brex's CISO Mark Hillick on avoiding tool bloat and learning from high-severity incidents

Apr 22, 2025 By Tines In Tines
In this week’s episode of The Future of Security Operations podcast, Thomas is joined by Mark Hillick, CISO at Brex. Mark’s experience in the security industry spans more than two decades. He started out as a security engineer at Allied Irish Banks before advancing through companies like MongoDB to become Director and Head of Security at Riot Games. His book, The Security Path, features over 70 interviews with security professionals on their career journeys.
View Video

April 22, 2025 Cyber Threat Intelligence Briefing

Apr 22, 2025 By Kroll In Kroll
This week’s briefing covers: Palo Alto Confirms Brute Force Campaign Against PAN-OS Devices Worldwide Following Kroll's previous bulletin highlighting a report from GreyNoise indicating a large uptick in activity targeting Palo Alto devices, it has been confirmed that Palo Alto has detected an ongoing campaign to brute force login credentials to PAN-OS devices.
View Video
idstrong

Cybersecurity Threats: What You Need to Know About Piggybacking

Apr 22, 2025 By IDStrong In IDStrong
In cybersecurity, piggybacking refers to an unauthorized person gaining access to a restricted area or system by exploiting the access privileges of an authorized user, typically by following them or leveraging their credentials, usually without their knowledge or consent.
Read Post
tripwire

Latest PCI DSS Standards: Use Third Parties - But at Your Own Risk

Apr 22, 2025 By Katrina Thompson In Tripwire
Third parties have long been the hidden heroes of the payment card industry, providing specialized, streamlined support to merchants looking to host a website or spin up an app. But that convenience is not without a cost. According to PCI DSS 4.0 compliance standards, although merchants are free to use third parties, the responsibility for any incurred security liability will be all theirs. When a merchant takes on an outside provider, they are taking on their cybersecurity risk as well.
Read Post
tripwire

Digital Hygiene in Healthcare: Where Cybersecurity Is a Matter of Life and Death

Apr 22, 2025 By Kirsten Doyle In Tripwire
The healthcare industry is a prime target for cyberattacks due to the significant value of medical data and the critical nature of patient care. Unlike other sectors, healthcare organizations must balance cybersecurity with the need for immediate access to life-saving information. Ransomware attacks, in particular, have surged, with cybercriminals exploiting outdated systems, unpatched vulnerabilities, and human error to disrupt operations.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.