Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Featured Post
salt security

A First Look at the Updated OWASP API Security Top 10

Apr 1, 2023 By Yaniv Balmas, VP of Security Research In Salt Security
As the pioneer in API security, Salt Security worked closely with the Open Web Application Security Project (OWASP) to help identify, define, and educate the security community about API security threats. In fact, Salt was a key contributor to the original OWASP API Security Top 10 list, released in 2019. The OWASP API Security Top 10 list has had a tremendous impact on the industry, increasing awareness and educating organizations on the fastest-growing API security threats. Given the significance of this list, Salt has been actively involved in the foundation's updated 2023 mapping. We are thrilled to see the publication of the initial release candidate.
Read Post
LimaCharlie

Developer Roll Up: March 2023

Apr 1, 2023 By Christopher Luft In LimaCharlie

Spring is in the air and the team at LimaCharlie continues on its quest to change the way that cybersecurity tools and supporting infrastructure are delivered. Join us for this month’s live webinar where Matt Bromiley, our Lead Solutions engineer, will be discussing LimaCharlie's detection and response capabilities. In this live webinar, we will look at: This is part two of a multi-part education series (part 1 here), where we look at different ways to utilize the LimaCharlie platform.

Read Post
Snyk

The Snyk Perpetual Key Rotation Machine

Apr 1, 2023 By Megan Moore In Snyk

At Snyk, we think of developers as citizens of a special community. In that community, your collection of apps is your neighborhood — and your code is your home base; your house. How do you secure a house? With a lock! And how do you make sure no one else can unlock that lock? You keep the key! That’s security ideation at its finest: keys. Just ask Vinz Clortho, Keymaster of Gozer.

Read Post

How Continuous Monitoring is Changing the Security Testing Landscape | Megan Brown

Apr 1, 2023 By Razorthorn In Razorthorn
Megan Brown, the Head of International Sales at LogicGate, shares her insights on the emerging trend of continuous monitoring in the security testing space. She talks about how small startups are creating SaaS platforms that use AI and API connections to provide always-on testing for organizations. She also discusses the benefits and challenges of this approach and why she is curious to see how it evolves. Watch this video to learn more about how continuous monitoring is transforming the way we do security testing.
View Video
securitysenses

Discovering the Gems of AboutInfoSec: A Cybersecurity Expert's Perspective

Mar 31, 2023 By SecuritySenses In SecuritySenses
Are you a cybersecurity enthusiast or a professional looking for the latest news, insights, and updates on the ever-evolving world of digital security? If so, AboutInfoSec might just be the website you've been looking for. As a cybersecurity expert with over seven years of experience, I've come across my fair share of online resources, but few have impressed me as much as AboutInfoSec. In this article, I'll share some of the most useful and interesting things I've found on this website.
Read Post
splunk

Command and Control: Understanding & Defending Against C2 Attacks

Mar 31, 2023 By Laiba Siddiqui In Splunk
Attackers go through several stages to make an attack successful. And the last line in the defense system they aim to break is the command and control (C2). C2 attacks are a severe threat to organizations of all sizes and types because, if successful, adversaries can steal all your valuable data. To protect against these attacks, you should implement a security framework and robust policies, including technical and organizational measures.
Read Post
vista infosec

A Complete Guide to Cybersecurity Compliance

Mar 31, 2023 By Narendra Sahoo In VISTA InfoSec

Cybersecurity has become a top priority for organizations across all industries and sizes. To safeguard their sensitive data and assets from the ever-evolving threats of cyberattacks and data breaches, businesses must take a proactive approach. Adherence to industry-specific cybersecurity regulations and frameworks is a critical component in building a robust and comprehensive cybersecurity program.

Read Post
Trustwave

Trustwave Action Response: Supply Chain Attack Using 3CX PABX Software

Mar 31, 2023 By Trustwave In Trustwave

On March 29, a massive supply chain compromise in 3CX software resulted in malware being installed globally across multiple industries. It is similar to the other high-profile supply chain attacks (like SolarWinds and Kaseya) in that rather than targeting a single organization, the criminals target a popular service or software provided to many large organizations. With one single compromise of the supplier, dozens and potentially hundreds of organizations may fall in turn.

Read Post

Copyright © 2026 OpsMatters™. All rights reserved.