Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

sysdig

GitHub & Supply Chain Risks

Feb 8, 2023 By Michael Isbitski In Sysdig

Contributing members of the open source project git deployed a code change in June 2022 that switched the default file compression method from the gzip program to an internal gzip-compatible implementation. The change was made for performance reasons and to reduce the dependency on the aging gzip project. Unfortunately, it also impacted SaaS offerings like GitHub that use git under the hood. GitHub deployed the change and was also forced to quickly roll it back in January 2023.

Read Post
securitysenses

What is Meant by Applied Quantum Computing?

Feb 7, 2023 By Kanchanapally Swapnil Raju In SecuritySenses
The world of quantum computing is one that has excited technologists and scientists alike for some time. But what is meant by applied quantum computing? In essence, the term 'applied quantum computing' refers to the practical application and implementation of quantum computing algorithms and techniques to solve real-world problems. Such applications of quantum computing can be used to solve problems in fields such as medicine, finance, engineering, and many other areas where complex and extensive calculations are necessary.
Read Post
WatchGuard

How to deal with sneaky spear phishing on Safer Internet Day

Feb 7, 2023 By Corey Nachreiner In WatchGuard

Each February, millions of people around the world observe Safer Internet Day, joining “Together for a better Internet.” This year marks the 20th anniversary of this global observance, and while a lot has changed over that time, some things remain constant. In particular, effective cybersecurity relies only in part on technology. Even as tools and systems become more powerful, avoiding security mishaps largely depends on people doing the right thing.

Read Post
Trustwave

Money Lover App Vulnerability Exposes Personal Info

Feb 7, 2023 By Trustwave In Trustwave

An information disclosure vulnerability has been identified in Money Lover, a finance tracking application created by Finsify and available on Android, iOS, Microsoft Store, with a web interface. This vulnerability allows any authenticated user to view live transactions related to shared wallets.

Read Post
archTIS

Managing Administrator Privileges for Australia's Essential Eight Cybersecurity Compliance

Feb 7, 2023 By Irena Mroz In archTIS
The concept of least privileged access has been around for a while and is widely understood. However, overprivileged users with more rights than necessary, such as administrators, continue to be a common source of breaches. It’s such a concern that the restriction of administrative privileges is included as one of the Australian Government’s Essential Eight Maturity Model to mitigate cybersecurity incidents.
Read Post
alienvault

How to protect your car dealership from cyber-attacks

Feb 7, 2023 By Theodoros Karasavvas In AT&T Cybersecurity

The content of this post is solely the responsibility of the author. AT&T does not adopt or endorse any of the views, positions, or information provided by the author in this article. Recent trends show that car dealerships are becoming a prime target for cyber-attacks, partly due to the rise in autonomous and connected vehicles. This is in addition to more traditional attacks such as phishing. Therefore, car dealerships are urged to take measures to improve their cybersecurity posture.

Read Post
Torq

How Parallel Loop Empowers Torq Users to Rapidly Automate Bulk Data Processing Up to 10x

Feb 7, 2023 By Leonid Belkind In Torq
Torq is proud to introduce Parallel Loop, a new capability that enables users to process bulk data from myriad security tools with unprecedented ease. It also provides the power of orchestration like no other automation tool in the security automation industry with true parallelism. That means multiple tasks can be run simultaneously, and optionally, on multiple elastically-scaled compute resources, shortening the time workflow automations take to complete by 10x or more.
Read Post
SecurityScorecard

SecurityScorecard releases list of Killnet open proxy IP addresses

Feb 7, 2023 By Ryan Sherstobitoff In SecurityScorecard

In the wake of Killnet’s latest DDoS attack on U.S. hospitals on January 30, SecurityScorecard has made its KillNet open proxy IP blocklist available to the public. This list is the product of the SecurityScorecard Threat Research, Intelligence, Knowledge, and Engagement (STRIKE) Team’s ongoingresearchintoKillNet. We released this list to help organizations better defend themselves against KillNet and other groupslike it by preventing traffic from exploitable assets.

Read Post

Copyright © 2026 OpsMatters™. All rights reserved.