Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Blog

knowbe4

Threat Actors Abuse Microsoft Sway to Launch QR Code Phishing Attacks

Aug 30, 2024 By Stu Sjouwerman In KnowBe4
Researchers at Netskope last month observed a 2000-fold increase in traffic to phishing pages delivered through Microsoft Sway. The phishing attacks are targeting organizations in the technology, manufacturing, and finance sectors in Asia and North America. Most of these attacks involved QR code phishing (quishing) to trick victims into visiting the malicious sites.
Read Post
knowbe4

Nearly Half of Mid-Market and Enterprise Organizations Have Experienced Four or More Ransomware Attacks in the Last Year

Aug 30, 2024 By Stu Sjouwerman In KnowBe4
New data exposes the reality of ransomware attacks today, including their frequency, impact, ransom payment – and the involvement of human error. It’s readily evident that ransomware is only growing as a threat. But a new infographic from ERP Cybersecurity vendor Onapsis covering the state of ransomware provides some context on just how critical the threat is right now: The most shocking stat is that in 81% of attacks, human error was involved in the successful execution of the ransomware.
Read Post
knowbe4

U.S. Experiences 52% Increase in the Number of Ransomware Attacks in One Year

Aug 30, 2024 By Stu Sjouwerman In KnowBe4
New analysis of current ransomware attacks shows a massive focus on U.S. organizations, with growth spread across nearly every industry. One would think there would be a slowdown in the number of ransomware attacks due to the amount of threat intelligence and best practices to mitigate this threat.
Read Post
Spectral

Software supply chain risk assessment: 8 steps to a secure SDLC

Aug 30, 2024 By Eyal Katz In Spectral
Like any chain, a software supply chain contains many links. These links consist of every actor involved in the development & deployment of your code in the Software Development Life Cycle (SDLC). An actor can be the developers, infrastructure components, and even repositories like GitHub. A company might have a very secure supply chain. However, it will only be as strong as its weakest link.
Read Post
wallarm

Evolution of Attack Surface Management

Aug 30, 2024 By Wallarm In Wallarm
While it was not called ASM, the concept of managing attack surface management began with basic asset management practices in the late 1990s and early 2000s. Organizations focused on keeping an inventory of their digital assets, such as servers, desktops, and network devices. The primary objective was to maintain an accurate record of these assets to ensure proper configuration and patch management.
Read Post
kroll

Deep And Dark Web Monitoring for Business: Uncovering Hidden Risks

Aug 30, 2024 By Kroll In Kroll
With tens of thousands of potential threats lurking in remote corners of the deep and dark web, organizations are increasingly at risk of being targeted by cyber attackers or having their sensitive information traded or leaked online. Deep and dark web monitoring enables businesses to safeguard their digital assets and accelerate visibility of online threats, protecting their brand and reputation.
Read Post
protecto

Can We Truly Test Gen AI Apps? Growing Need for AI Guardrails

Aug 30, 2024 By Amar Kanagaraj In Protecto
Unlike traditional software, where testing is relatively straightforward, Gen AI apps introduce complexities that make testing far more intricate. This blog explores why traditional software testing methodologies fall short for Gen AI applications and highlights the unique challenges posed by these advanced technologies.
Read Post
securitysenses

Why Your Laptop Slows Down

Aug 30, 2024 By SecuritySenses In SecuritySenses
In today's world, a laptop is not just a luxury but an indispensable tool for both work and leisure. With technological advancements, laptops enable us to watch movies, connect with friends, listen to music, and indulge in online activities. However, when a laptop starts to slow down, users lose access to these privileges. Simple tasks that used to happen in the blink of an eye now require prolonged waiting. Maybe it's time to upgrade your RAM? Check the available RAM for your laptop.
Read Post
securitysenses

Apple, X, and the Revolution in VPN Technology

Aug 30, 2024 By SecuritySenses In SecuritySenses
A virtual private network is a tool used to encrypt data and mask a user's IP address. Many people use them to access content that may be banned in their country. In certain jurisdictions, X is being prohibited and has been linked to a rise in VPN use. In this article, we talk about how Apple customers have found them increasingly hard to find.
Read Post
chaossearch

How to Get Started with a Security Data Lake

Aug 29, 2024 By David Bunting In ChaosSearch
Modern SecOps teams use Security Information and Event Management (SIEM) software to aggregate security logs, detect anomalies, hunt for threats, and enable rapid incident response. While SIEMs enable accurate, near real-time detection of threats, today's SIEM solutions were never designed to handle the volume of security data organizations generate daily. As daily log ingestion grows, so do the costs of data management.
Read Post

Copyright © 2024 OpsMatters™. All rights reserved.