Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

The 443 Podcast - Episode 273 - Hacking the Crypto Supply Chain

Dec 19, 2023 By WatchGuard In WatchGuard
This week on the podcast, we cover a supply chain attack against one of the largest hardware cryptocurrency wallet manufacturers. After that, we discuss the latest Apache Struts vulnerability under active exploit by threat actors. We end the episode with our thoughts on a research blog post about a set of threat actors using an old school attack against modern targets. The 443 Security Simplified is a weekly podcast that gets inside the minds of leading white-hat hackers and security researchers, covering the latest cybersecurity headlines and trends.
View Video
SecurityScorecard

Applying the Churchill Knowledge Audit to Cybersecurity

Dec 19, 2023 By SecurityScorecard In SecurityScorecard

When FedEx founder Fred Smith attended Yale in the mid-1960s, he wrote an economics paper describing the concept of overnight delivery of packages by air. His professor infamously gave him a “C” grade because he viewed it as implausible. But Smith knew something his professor didn’t—and it was an idea that would change the way the business world worked forever. I bring this story up for two reasons. For one thing, I worked for FedEx and learned a lot from my time there.

Read Post
keeper

What To Do if You Click on a Phishing Link

Dec 19, 2023 By Aranza Trevino In Keeper

If you click on a phishing link you should immediately disconnect your device from the internet, scan your device using antivirus software and keep a lookout for suspicious activity and transactions on your online accounts. Continue reading to learn what a phishing link is, what could happen if you click on a phishing link and how to avoid clicking malicious links.

Read Post
sumologic

NIS2: Prepping your cybersecurity plan

Dec 19, 2023 By George Gerchow In Sumo Logic
If you are an organisation that operates or does business in the European Union (EU), then your team is likely preparing for the NIS2 Directive, an EU-wide legislation on cybersecurity. It provides legal measures to boost the overall level of cybersecurity in the EU and goes into effect on October 17, 2024. However, according to a survey by cybersecurity firm Sailpoint (and a Sumo Logic customer), only 34% of organisations in the UK, France, and Germany are prepared for NIS2.
Read Post
cyberint

ALPHV Site Taken Down by the FBI

Dec 19, 2023 By Shmuel Gihon In Cyberint
On December 19, 2023, the FBI successfully dismantled one of the ALPHV/BlackCat ransomware sites. The customary FBI banner now adorns its main page, while the other sites associated with the cybercrime gang remain operational. This development may be linked to the recent 5-day disruption of the entire gang’s Darknet infrastructure.
Read Post
idstrong

14.7 Million Homeowners Exposed in Nationstar Mortgage/Mr. Cooper Event

Dec 19, 2023 By Steven In IDStrong

We reported on Mr. Cooper—one of the nation’s largest mortgage providers—a month ago. Mr. Cooper was featured as they dealt with the throws of a cybersecurity event. The attack disrupted their networks and caused homeowners to avoid payment dues temporarily. Back then, the consequences of the attack were unclear. Subsequently, the public was left to speculate about the event’s impact. Preliminary investigations have concluded, and the impact figure is massive.

Read Post

Passwords Suck! Going Passwordless With Passkeys, SSO and Biometrics

Dec 19, 2023 By Keeper In Keeper
Passwords suck. We all hate creating passwords. We hate remembering them. They can be stolen. Billions of them are available on the Dark Web. Passkeys are more secure than passwords, however, passkeys stored with platforms like Google and Apple cannot be easily shared from one platform to another. This prevents teams from sharing access. Adrien Julienne from Keeper Security hosts Ricky White, Director of Technology and Operations at The Migus Group to learn how organizations can move to a passwordless future with passkeys, SSO and biometrics.
View Video
SecurityScorecard

When Hackers Get Hacked: A Cybersecurity Triumph

Dec 19, 2023 By SecurityScorecard In SecurityScorecard

In a dramatic twist befitting a digital thriller, a malware analyst at SecurityScorecard turned the tables on cybercriminals, rescuing a company from a staggering $500,000 ransomware demand. This story isn’t just about a single incident; it’s a testament to the power of cybersecurity expertise in the ongoing battle against ransomware, a menace that recorded 493 million instances in 2022 alone.

Read Post
idstrong

New Details Provided for 270k Records Leaked in National Student Clearinghouse MOVEit Event

Dec 19, 2023 By Steven In IDStrong

The National Student Clearinghouse (NSC) is a provider of comprehensive skill sets; they work to better prepare students for success through grade school and during the transition into the workforce. Dubbed “the K-20 to Workforce Continuum,” NSC’s services have assisted thousands of individuals in achieving academic and career distinctions. These same individuals may now be at risk for information misuse, however. The NSC is another victim of the global MOVEit data breach event.

Read Post
idstrong

MOVEit Claims 7 Million More; Patients of Delta Dental of California and Others

Dec 19, 2023 By Steven In IDStrong

Delta Dental of California (DDC), Delta Dental Insurance Company, Delta Dental of Pennsylvania, and other subsidiaries may have exposed data; the compromised data is not a product of the organizations. Instead, the breach stems from a third-party servicer specializing in file management and transferring tools—MOVEit.

Read Post

Copyright © 2026 OpsMatters™. All rights reserved.