Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Trustwave

Apache ActiveMQ Vulnerability Leads to Stealthy Godzilla Webshell

Jan 18, 2024 By Trustwave In Trustwave
Trustwave has observed a surge in attacks exploiting vulnerabilities in Apache ActiveMQ hosts. In certain cases, these host malicious Java Server Pages (JSP) web shells. The web shells are concealed within an unknown binary format and are designed to evade security and signature-based scanners. Notably, despite the binary's unknown file format, ActiveMQ's JSP engine continues to compile and execute the web shell.
Read Post
Torq

How To Automate Recorded Future With Torq

Jan 18, 2024 By Torq In Torq
One of the superpowers of the Torq Hyperautomation platform is the ability to integrate with anything. We team up with leading security vendors to combine forces to create automations that make SOC analysts’ lives easier while also improving their organizations’ security posture. In our latest blog series, Hyperautomation Cheat Codes, we look at some of Torq’s key partners and highlight some of the automations that we pair up on.
Read Post
algosec

How to Perform a Network Security Risk Assessment in 6 Steps

Jan 18, 2024 By Tsippi Dach In AlgoSec
For your organization to implement robust security policies, it must have clear information on the security risks it is exposed to. An effective IT security plan must take the organization’s unique set of systems and technologies into account. This helps security professionals decide where to deploy limited resources for improving security processes. Cybersecurity risk assessments provide clear, actionable data about the quality and success of the organization’s current security measures.
Read Post
cyberint

Meta is down: Skynet and Other Groups Claim to Have Attacked

Jan 18, 2024 By Coral Tayar In Cyberint
Update: Meta appears to be coming online again. Breaking news: 3 threat actor groups (Skynet, Godzilla, and Anonymous Sudan) have claimed to attack and shut down Facebook, Threads and Instagram. Users are being automatically logged out of Meta and being shown session expired messages. Then they are unable to log back in. Instagram is showing feed errors.
Read Post
nucleus

Release Spotlight: Orca Connector

Jan 18, 2024 By Gil Azaria In Nucleus
Imagine navigating the vast, unpredictable ocean, where every wave and current brings a new challenge. This turbulent navigation experience mirrors the journey of companies navigating the complex world of cloud environments, filled with hidden dangers such as security vulnerabilities, misconfigurations, and compliance violations. In these deep digital seas, where threats lurk unseen, it’s crucial to have vigilance, a sophisticated understanding, and a guiding tool to illuminate the path ahead.
Read Post
protecto

Developing Enterprise-Ready Secure AI Agents with Protecto

Jan 18, 2024 By Amar Kanagaraj In Protecto
In an era where artificial intelligence is transforming industries, AI agents are emerging as powerful tools for automating workflows, enhancing decision-making, and delivering tailored user experiences. These agents are entrusted with handling vast amounts of sensitive data from sensitive healthcare records to financial transactions and intellectual property. However, this trust comes with a significant responsibility: ensuring robust data security and compliance.
Read Post
Featured Post
protegrity

The tension between the CDO and the CISO: The balancing act of data exploitation versus protection

Jan 17, 2024 By Alasdair Anderson, Vice President In Protegrity
Data is the most valuable resource for the global enterprise. For any company wanting to remain relevant in today's competitive business landscape, data needs to be at the centre of every business decision, allowing the C-suite to review initiatives, make real-time decisions and if necessary reverse actions. A quick response fuelled by real data insights will power and improve the customer experience and product offerings while driving lower prices through better efficiency. Ultimately, this will improve the bottom line and deliver successful outcomes for many organisations.
Read Post
manageengine

USB review, Part 1: How are USB flash drives a security risk?

Jan 17, 2024 By DataSecurity Plus In ManageEngine

We’ve all used pocket-sized USB drives to store and transfer data. We’ve also lost them countless times. USB sticks are a necessary convenience accompanied by complex and varied risks. Besides the loss of the actual ”pendrives” as they’re also known, organizations fall prey to targeted USB attacks, which are quite common. Threats designed for USB exploits have risen from 37% to 52%, according to Honeywell’s Industrial Cybersecurity USB Threat Report 2022.

Read Post
securitysenses

Emerging Trends in Wage and Hour Litigation: What You Need to Know

Jan 17, 2024 By SecuritySenses In SecuritySenses
Wage and hour litigation has seen rapid evolution in recent years. With new legal developments and shifts in the workplace, businesses must stay vigilant to avoid noncompliance. This article explores the key trends and provides practical guidance for employers.
Read Post
Torq

How to Automate Cloud Security with Torq and Wiz

Jan 17, 2024 By Torq In Torq
One of the superpowers of the Torq Hyperautomation platform is the ability to integrate with anything. We team up with leading security vendors to combine forces to create automations that make SOC analysts’ lives easier while also improving their organizations’ security posture. In our latest blog series, Hyperautomation Cheat Codes, we look at some of Torq’s key partners and highlight some of the automations that we pair up on.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.