Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

%term

wallarm

CVE-2024-3080: ASUS warns Customers about the latest Authentication Bypass Vulnerability detected Across seven Router Models

Jun 21, 2024 By Wallarm In Wallarm
ASUS recently issued a firmware update to resolve a critical security vulnerability affecting seven different variants of its router models. Identified as CVE-2024-3080 with a CVSS v3 severity score of 9.8 (critical), the vulnerability permits remote attackers to take control of the affected router models without needing any login credentials.
Read Post
fireblocks

Fireblocks x Cosmos: Exploring THORChain

Jun 21, 2024 By Fireblocks In Fireblocks
THORChain is a network that facilitates native asset settlement between various blockchains including Bitcoin, Ethereum, BNB Chain, Cosmos, and more. Overall, THORChain aims to provide a seamless and efficient way for users to exchange assets across different blockchains while maintaining a high level of decentralization, security, and community participation.
Read Post
Arctic Wolf

How to Solve the 5 Biggest Security Awareness Training Challenges

Jun 21, 2024 By Arctic Wolf In Arctic Wolf
Positive security outcomes don’t happen by chance — they result from a culture in which security is ingrained and embodied within and by everyone, from the executives through the employees. This fact has led to an overdue shift in organizational thinking, with recent research revealing that 88% of global organizations currently use some form of security awareness program, with another 10% in the process of adopting such a program within the next 12 months.
Read Post

Deep Dive into Application Security: Understanding Firewalls, Malware, and APIs

Jun 21, 2024 By Cloudflare In Cloudflare
In this week’s episode, we explore how Cloudflare handles application security, current trends, vulnerabilities, and future expectations. Host João Tomé is joined by Michael Tremante, Director of Product from our Application Security team. We discuss the evolution of application security and its increasing relevance today. We also go into specific use cases, covering firewall security, malware, supply chain risks, and the critical task of monitoring various vulnerabilities, including zero-day threats.
View Video
cyphere

Learn about ISO 27001 Penetration Testing and its requirements

Jun 21, 2024 By Harman Singh In Cyphere
ISO 27001, the internationally recognised standard for information security management systems (ISMS), provides a framework for organisations to protect their valuable information assets. Penetration testing is crucial in preventing data breaches and maintaining the business’s reputation. ISO 27001 strongly recommends it as a critical tool for assessing an organisation’s security posture and ensuring compliance with control A.12.6.1, which focuses on managing technical vulnerabilities.
Read Post
salt security

Don't Get Salted: Why API Inventory is Key to PCI DSS 4.0 Compliance (and How Salt Security Can Help You Achieve It)

Jun 21, 2024 By Amanda Fitzsimmons In Salt Security
The Payment Card Industry Data Security Standard (PCI DSS) is the gold standard for protecting cardholder data. With the recent release of version 4.0, the focus on securing APIs has intensified. But what does this mean for your organization, and why shouldn't you take API security with a grain of salt (pun intended)?
Read Post
keeper

How To Disable Your Browser-Based Password Manager

Jun 21, 2024 By Keeper In Keeper
If you save your passwords in a browser password manager, your passwords may be at risk of becoming compromised. This is because browsers frequently remain logged in, meaning if someone gained access to your device they’d have access to all your stored passwords. Additionally, if your browser were to become compromised, everything stored in your browser would also be at risk of becoming compromised due to weak encryption standards.
Read Post
senseon

A Wake-Up Call for Endpoint Security: EPP in 2024

Jun 21, 2024 By James Mistry In SenseOn
The Importance of EPP With cyber attacks continuing unabated, neglecting endpoint security is dangerous and potentially catastrophic. Organisations must adopt reliable endpoint security solutions to prevent threat actors from hijacking business systems or stealing sensitive data. Kaspersky The recent decision by the US government to ban the sales of Kaspersky antivirus software due to its ties to Russia underscores the importance of a trustworthy software supply chain.
Read Post

Copyright © 2024 OpsMatters™. All rights reserved.