Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

%term

bitsight

The Aftermath of the Kaspersky Ban

Dec 18, 2024 By Pedro Umbelino In BitSight
In the spring of 2024, amid growing international concern about supply chain risk and the trust and reliability of technology suppliers, the United States banned Kaspersky Lab, Inc., the Russia-based antivirus company from providing its products to the US market. The ban went into effect on September 30, 2024. What impact has the ban had on US and global usage of Kaspersky? Has it been effective? A new analysis from Bitsight contains some surprising results.
Read Post
tripwire

Managing NERC CIP Patching Process With Tripwire Enterprise and Tripwire State Analyzer

Dec 18, 2024 By Paul Stewart In Tripwire
One of the hardest parts of managing an organization’s cybersecurity is patch management. Just as one patch cycle is completed, another set of patches are released. When compounded with the highly regulated energy industry, governed by the NERC CIP Standards, the task becomes even more daunting. Fortunately, Fortra’s Tripwire Enterprise (TE) and Tripwire State Analyzer (TSA) can ease the process.
Read Post
tripwire

CIS Control 08: Audit Log Management

Dec 18, 2024 By Matthew Jerzewski In Tripwire
Audit logs provide a rich source of data critical to preventing, detecting, understanding, and minimizing the impact of network or data compromise in a timely manner. Collection logs and regular reviews are useful for identifying baselines, establishing operational trends, and detecting abnormalities. In some cases, logging may be the only evidence of a successful attack. CIS Control 8 emphasizes the need for centralized collection and storage and standardization to better coordinate audit log reviews.
Read Post
armo

Leading security frameworks for CSPM

Dec 18, 2024 By Ido Huberman In ARMO
Cloud Security Posture Management (CSPM) has become essential for monitoring cloud infrastructure, identifying risks, and enforcing security policies. As cloud adoption grows, managing the complexity of these environments—where misconfigurations and vulnerabilities can lead to breaches—requires a robust approach. This is where security frameworks come into the picture. Security frameworks offer structured guidelines and best practices for managing and improving security posture.
Read Post
obrela

Get a unified approach towards Compliance with NIS2 and DORA

Dec 18, 2024 By Notis Iliopoulos In Obrela
In the cyber security domain, the increase of cyber-attacks alongside the acceleration of businesses’ digital transformation, drive states to deploy a more ringent regulatory framework to protect data and establish a code of conduct for businesses. In this perspective, it is essential to view compliance as an integral component of the wider governance framework, which is grounded in international standards of an interconnected world that makes best use of already tested best practices.
Read Post
securitysenses

Enhancing Cybersecurity: Essential Inbound Email Security Strategies for Modern Businesses

Dec 18, 2024 By SecuritySenses In SecuritySenses
As cyber threats continue to evolve, protecting your organization's email communications has never been more critical. From advanced AI-powered filtering to comprehensive staff training, discover the essential strategies that safeguard your business against modern email-based attacks. This guide provides actionable insights to strengthen your security posture and defend against emerging threats targeting your inbox.
Read Post

Security's Confidentiality, Integrity and Availability (CIA) Triad - Outdated or Still Relevant?

Dec 17, 2024 By Mend In Mend
Are confidentiality, integrity, and availability still enough, or is it time to evolve our thinking? Join Chris Lindsey and a panel of tech leaders from leading enterprises, for a dynamic discussion on the relevance of the CIA Triad in modern security practices. Chapters: CIA Triad Basics and CVSS Scoring (0:00 - 0:55) Expanded Impact Metrics (0:55 - 2:02) Additional Impact Considerations (2:02 - 2:45) Historical Context and Evolution (3:01 - 3:41) Modern Challenges and Limitations (3:41 - 5:21) Risk-Based Prioritization (5:48 - 6:22) Business Communication Value (6:26 - 8:18)
View Video
Trustwave

Trustwave's 2025 Cybersecurity Predictions: AI-Powered Attacks, Critical Infrastructure Risks, and Regulatory Challenges

Dec 17, 2024 By by Kevin Kerr In Trustwave
As 2024 comes to a close, we went around the room and asked some of Trustwave’s top executives what cybersecurity issues and technology they saw playing a prominent role in 2025. Here is the latest installment. As we look ahead to 2025, the landscape of cyber threats continues to evolve, presenting new challenges for cybersecurity professionals.
Read Post

Copyright © 2024 OpsMatters™. All rights reserved.