Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

%term

jumpsec

Ethical Hacking vs. Vulnerability Assessment: Understanding the Differences

Sep 5, 2024 By shiba In JUMPSEC
In the dynamic field of cybersecurity, two essential practices stand out: Ethical Hacking and Vulnerability Assessment. Both play critical roles in safeguarding digital assets, yet they serve different purposes and employ distinct methodologies. Understanding the differences, their place in cybersecurity, and when to deploy each tactic is crucial for maintaining a robust security posture.
Read Post

Cybersecurity Sessions S03E01: "Bot's the Story, Morning Glory?" Oasis Ticket Scalper Bots

Sep 5, 2024 By Netacea In Netacea
Netacea bot experts discuss the challenges around the Oasis reunion tour ticket sales, focusing on the issues caused by bots and scalping in high-demand events. The discussion explores the technical difficulties of managing ticket sales, the tactics used by bot operators to secure tickets, and the broader implications for the industry. The team also discuss why current methods to prevent bot activity often fail and why a multi-pronged strategy combining real-time detection, post-transaction analysis, and clamping down on secondary markets is critical.
View Video
11:11 systems

Introduction to Amazon S3 Storage Classes

Sep 5, 2024 By Jim Jones In 11:11 Systems
A good deal of my time and efforts in educating customers today is around object storage in general and AWS S3 in particular. In case you missed it 11:11 Systems has recently taken our partnership with AWS to the next level, making all of their S3 class storage available to you with our award winning support and flexible pricing options.
Read Post
foresiet

Revival Hijack: How Abandoned PyPI Package Names Are Being Exploited to Deliver Malware

Sep 5, 2024 By Foresiet In Foresiet
Security researchers have uncovered a novel and concerning method for cybercriminals to distribute malware using public code repositories. Known as "Revival Hijack," this technique involves the re-registration of previously abandoned package names on the PyPI repository. By taking advantage of the fact that PyPI allows the reuse of names from removed packages, attackers are able to slip malicious code into unsuspecting organizations.
Read Post
foresiet

Cybercriminals Caught in the Trap: Infostealers Weaponized Against Hackers

Sep 5, 2024 By Foresiet In Foresiet
In an ironic twist of fate, cybercriminals seeking to exploit stolen credentials have found themselves the targets of a new scheme. Security researchers recently uncovered a malicious campaign in which hackers were lured into downloading infostealer malware through a seemingly legitimate tool for checking compromised OnlyFans accounts. This development serves as a reminder that even those lurking on the dark web are not immune to digital risks.
Read Post

Minimizing the Impact of Cloud Attacks

Sep 5, 2024 By Kroll In Kroll
What does your organization have in place to minimize the damage when an incident happens? Having handled thousands of incident response cases, our experts recommend putting high quality monitoring tools in place to detect potential threats to the cloud, such as zero-day vulnerabilities, misconfigurations and insider threats and more. Watch now. Additional Kroll Research on Cloud Safety.
View Video

Copyright © 2024 OpsMatters™. All rights reserved.