Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

knowbe4

'Support' Tops the List of Combosquatted Domains Used in Phishing Attacks

Apr 13, 2023 By Stu Sjouwerman In KnowBe4

A method used in domain impersonation attacks, combosquatting aids the threat actor by using a modified domain name to further increase the credibility of an attack. If you aren’t familiar with the term combosquatting, it’s where a threat actor takes a legitimate domain – let’s use companyco.tld and combine another phrase with the domain name to create something like support-companyco.tld.

Read Post
knowbe4

Affinity Phishing Attacks Use Social Engineering Tactics to Prey on Victims

Apr 13, 2023 By Stu Sjouwerman In KnowBe4

Affinity phishing scams are ones in which criminals cultivate trust in their prospective victims by trading on common background, either real or feigned. Thus a fraudster might claim a common religion, a shared military background, membership in a profession, or a common ethnicity, all with the goal convincing the victim that they can be trusted. What follows all too often one can readily imagine.

Read Post
detectify

Detectify's journey to an AWS multi-account strategy

Apr 13, 2023 By Haris Kabiljagic In Detectify

In the past year, we’ve shifted our infrastructure from a single Amazon Web Services (AWS) account owned by our Platform team to multiple domain-specific accounts. For each product domain and environment, we have created AWS accounts, which has allowed us to improve stability and security by reducing the blast radius. This setup also provides excellent scalability with good cost observability across the organization.

Read Post
veracode

What Are the Security Implications of AI Coding?

Apr 13, 2023 By Natalie Tischler In Veracode

AI coding is here, and it’s transforming the way we create software. The use of AI in coding is actively revolutionizing the industry and increasing developer productivity by 55%. However, just because we can use AI in coding doesn't mean we should adopt it blindly without considering the potential risks and unintended consequences.

Read Post
upguard

Top 10 Cybersecurity Frameworks for the Financial Industry

Apr 13, 2023 By Kyle Chin In UpGuard
A healthy financial sector is essential for economic stability and security. Cybersecurity frameworks can help financial organizations meet the requirements of financial regulations and ensure that the financial system operates safely and securely while protecting the rights and privacy of consumers.
Read Post
keeper

How to Protect Your Company's Social Media Passwords From Cybercriminals

Apr 13, 2023 By Aranza Trevino In Keeper

All businesses, regardless of size or industry, are potential targets for cybercriminals. As businesses become more aware of the importance of password security in preventing data breaches, they focus on the most obvious areas of weakness, such as employee email accounts and network passwords. However, social media passwords present unique security challenges that organizations may be ill-prepared to handle.

Read Post

Webinar Replay: Active Assailant Preparedness Webcast with Security and Risk Management Experts

Apr 13, 2023 By Kroll In Kroll
In this webcast, Kroll Managing Directors Matthew Dumpert, Daniel Linskey and Sherine Ebadi and Crisp Vice President Jon Best shared their unique perspectives on active assailant incidents as former law enforcement and government leaders and discuss how organizations can prioritize workplace safety by focusing on, detecting and mitigating potential threats before they manifest in tragic violence.
View Video

Copyright © 2026 OpsMatters™. All rights reserved.