Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

tripwire

NIST SP 800-172 (Formerly SP 800-171B) Release Couldn't Come at a Better Time

Mar 28, 2021 By Steven Tipton In Tripwire

NIST’s timely new release of Special Publication (SP) 800-172 (formerly referred to in draft form as 800-171B) provides exactly what its title says, Enhanced Security Requirements for Protecting Controlled Unclassified Information: A Supplement to NIST SP 800-171. Yet it goes a step further to protect controlled unclassified information (CUI) specifically from APTs.

Read Post
cyberint

Black Kingdom Ransomware

Mar 27, 2021 By Cyberint Research In Cyberint

Hot on the heels of 'Dearcry'[1], yet another ransomware threat has been observed as targeting Microsoft Exchange servers vulnerable to recently reported critical vulnerabilities[2]. Dubbed 'Black KingDom', this ransomware threat has reportedly been deployed through a web-shell that is installed on vulnerable Microsoft Exchange servers following the exploitation of the vulnerability chain that results in both remote code execution (RCE) and elevated privileges.

Read Post
alienvault

SD-WAN vs. MPLS: how do they compare from a security perspective?

Mar 26, 2021 By Mark Stone In AT&T Cybersecurity

SD-WAN and MPLS are two technologies that are often perceived as either-or solutions. For many organizations, however, SD-WAN and MPLS can complement each other. This article will define and compare the technologies, explaining how, in many cases, they work together. We’ll also explore SD-WAN’s popularity and its role in enabling modern security architectures like SASE.

Read Post
cyphere

What is an SMB Port? How to check for open ports 445 and 139? SMB versions explained.

Mar 26, 2021 By Harman Singh In Cyphere

SMB stands for Server Message Block, once known as Common Internet File System, is a communication protocol for providing shared access between systems on a network. At a high level, it is a set of rules adopted to share files, printers in a network. SMB is a file sharing protocol that involves computers communicating with each other in a local network. This local network could be a small business within the same office or a multi-national company with offices around the globe connected to each other.

Read Post
Snyk

SQL injection cheat sheet: 8 best practices to prevent SQL injection attacks

Mar 26, 2021 By Brian Vermeer In Snyk

SQL injection is one of the most dangerous vulnerabilities for online applications. It occurs when a user adds untrusted data to a database query. For instance, when filling in a web form. If SQL injection is possible, smart attackers can create user input to steal valuable data, bypass authentication, or corrupt the records in your database. There are different types of SQL injection attacks, but in general, they all have a similar cause.

Read Post

Are we forever doomed to software supply chain security?

Mar 26, 2021 By Snyk In Snyk
The adoption of open-source software continues to grow and creates significant security concerns for everything from software supply chain attacks in language ecosystem registries to cloud-native application security concerns. In this session, we will explore how developers are targeted as a vehicle for malware distribution, how immensely we depend on open-source maintainers to release timely security fixes, and how the race to the cloud creates new security concerns for developers to cope with, as computing resources turn into infrastructure as code.
View Video

Copyright © 2026 OpsMatters™. All rights reserved.