Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

%term

DevSecOps: From Culture to ROI

Wednesday, Sep 11th, 2024 DevSecOps: It sounds like a dream team, right? But the reality is often a bit more... challenging. When companies try to bring together development and security, it's like trying to mix oil and water. There are organizational roadblocks, cultural clashes, and technical headaches that can make the whole process feel like a never-ending uphill battle. The challenges of adopting DevSecOps may seem insurmountable. Is adopting DevSecOps worth the effort? Yes. One hundred percent.

How Scalper Bots Evaded Detection to Snatch Oasis Tickets

At 8:00 on Saturday, 31st August 2024, millions of people were poised to be part of pop culture history. Four days earlier, on 27th August, seminal Britpop heavyweights Oasis shocked the music world by finally confirming their long-awaited reunion. The reconciliation of brothers Liam and Noel Gallagher sent fans into a frenzy. For millions worldwide, it was essential to get tickets to one of the 17 announced gigs. The demand was enormous.

How Manufacturing Organizations Can Increase Their Cybersecurity

When Clorox was hit with a ransomware attack in 2023, the impact went beyond just the infected endpoints. Threat actors succeeded in taking many of the organization’s automated systems offline and impacted large retailers’ ability to order products from the manufacturer. There was significant operational downtime as it took Clorox over a month to contain the breach, and the resulting financial loss was in the tens of millions.

Your Lawyers Are Increasingly Targeted by Phishing Attacks, Ransomware

Researchers at Bitdefender warn that law firms are high-value targets for ransomware gangs and other criminal threat actors. Attackers frequently use phishing to gain initial access to an organization’s networks. “Phishing is one of the most common attacks in the legal field,” the researchers write. “Cybercriminals pose as legitimate entities, tricking employees into divulging sensitive information or clicking malicious links.

Losses From Investment Scams have Increased Six-Fold Since 2021

The Better Business Bureau (BBB) has observed a six-fold increase in losses from investment scams over the past three years. The BBB has received more than 4,000 reports of investment scams since 2020, with the median reported loss rising from $1,000 in 2021 to almost $6,000 in 2024.

Wallarm Innovation Update: Effective API Protection With GraphQL And API Policy Enforcement

With its exceptional ability to improve application flexibility, performance, and user experience, GraphQL is rapidly becoming one of the most widely adopted API protocols, with Gartner predicting that by 2025 it will be implemented by over 50% of enterprises. However, the same flexibility that makes GraphQL such an attractive protocol, however, also makes it susceptible to a variety of unique attacks.

The Value of Cyber Risk Quantification Models Vs. CRQ Frameworks

From the individual to the global level, managing risk is a part of life. While in some contexts, poor risk planning merely results in minor, inconsequential outcomes, in others, such negligence can be catastrophic. Take the July 2024 CrowdStrike incident, for instance, during which a faulty software update put global airlines out of commission, took broadcasters off the air, and cost the market upward of $5 billion in uninsured losses.