Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

safebreach

SafeBreach Coverage for AA24-109A (Akira Ransomware)

Apr 19, 2024 By Kaustubh Jagtap In SafeBreach
On April 18th, the United States’ Federal Bureau of Investigation (FBI), Cybersecurity and Infrastructure Security Agency (CISA), Europol’s European Cybercrime Centre (EC3), and the Netherlands’ National Cyber Security Centre (NCSC-NL) issued an urgent advisory about Akira ransomware’s recently exhibited malicious behavior (as of February 2024). Detailed information about these threats and the associated IOCs and TTPs can be seen on #StopRansomware: Akira Ransomware.
Read Post
centripetal

PuTTY Vulnerability: CVE-2024-31497

Apr 19, 2024 By Lauren Farrell In Centripetal
On April 15th, Fabian Bäumer and Marcus Brinkmann of Ruhr University Bochum disclosed that PuTTY had a vulnerability that can allow an attacker to compromise private keys, then forge signatures, and log into any remote servers on which those keys are used. PuTTY is a free and open-source terminal emulator, serial console and network file transfer application that supports several network protocols, including SCP, SSH, Telnet, rlogin, serial port and raw socket connections.
Read Post
upguard

Introducing UpGuard Trust Exchange

Apr 19, 2024 By UpGuard Team In UpGuard
Security questionnaires represent the cornerstone of most third-party risk management (TPRM) programs. They allow organizations to responsibly appraise a vendor's security posture before they move forward with onboarding and grant the vendor access to internal systems and data. Nevertheless, most security teams feel burdened by time-consuming and lengthy security questionnaires, especially when faced with additional resource and staffing limitations.
Read Post

DDoS report Q1 2024, certificate changes, QR phishing, and more

Apr 19, 2024 By Cloudflare In Cloudflare
In this week's episode, we discuss different topics from blogs that we published in the previous couple of weeks, right after our Developer Week 2024. Host João Tomé is joined by our Field CTO, Trey Guinn, based in San Francisco. We discuss our most recent DDoS threat report for Q1 2024, highlighting the continued increase in DDoS attacks and emerging trends. Additionally, we address Cloudflare's efforts to ensure our customers aren't affected by Let's Encrypt's certificate chain change, emphasizing the importance of certificates.
View Video
jumpcloud

How to Defend Against Modern Phishing Attacks

Apr 19, 2024 By Kate Lake In JumpCloud
Phishing isn’t what it used to be. Older, popular scams — like grammatically incorrect love letters and mysterious princes who just need a little money — have given way to sophisticated and dangerous social engineering attacks. In fact, phishing has become so prevalent and effective that it is one of the three primary ways hackers compromise credentials.
Read Post
Trustwave

Unlocking the Power of Offensive Security: Trustwave's Proactive Approach to Cyber Defense

Apr 19, 2024 By Trustwave In Trustwave
Clients often conflate Offensive Security with penetration testing, yet they serve distinct purposes within cybersecurity. Offensive Security is a broad term encompassing strategies to protect against cyber threats, while penetration testing is a specific activity where security teams test system vulnerabilities. At its essence, Offensive Security isn't just about reacting to vulnerabilities; it's about actively hunting down and neutralizing potential threats before they wreak havoc.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.