Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

%term

Top 8 Third-party Risk Assessment Software Options in 2024

The right choice of Third-party risk assessment software will automate risk assessment workflows and boost the efficiency of your Third-Party Risk Management program. This post reviews the top eight contenders in the TPRM and supply chain risk management market to help you make the right choice for your third-party cybersecurity objectives.

Teamwork for Internet security: Rapid response & compliance

Host João Tomé is joined by two guests. First, we have Ranee Bray, Chief of Staff of our Security Team, discussing how we managed programmatically what we called Code Red — several teams were put together to focus in 30 days on strengthening, validating, and remediating a security incident. Credential management, software hardening, vulnerability management, additional alerting, and other areas were also a part of the “Code Red” effort.

Teaser. Half a Century of Connectivity: Celebrating 50 Years of TCP

In May 1974, 50 years ago, Vint Cerf and Bob Kahn made history with their paper on TCP (Transmission Control Protocol) published by @IEEEorg. Here is a teaser of a longer video (and "This Week in Net" episode) coming soon from our protocol experts, Mark Nottingham (Australia), and Lucas Pardue (UK).

Ubuntu 24.04 is Here! Protect your Linux workloads with BDRSuite

Linux recently released Ubuntu 24.04, both Desktop and Server. They bring a lot of new features and enhancements but still require proper protection against failure. First, that includes a proper configuration and then a backup and recovery strategy. Regardless of where Ubuntu 24.04 is installed, Hyper-V, VMware, Proxmox, or bare metal, you must protect it against failure.

Evolving Detection Engineering Capabilities with Breach & Attack Simulation (BAS)

Threat actors are constantly updating their tactics, techniques and procedures (TTPs). In response, security teams must also continue to evolve their ability to detect the latest threats to avoid exploitation of security gaps that can result in costly breaches. This process, called detection engineering, refers to the method of fine-tuning security technologies to better detect malicious activity.

Vulnerabilities in BIG-IP Next Central Manager allows control of managed devices

In May 2024, new vulnerabilities have been identified in BIG-IP Next Central Manager, raising considerable security concerns. This discovery follows closely on the heels of a critical vulnerability revealed in April within Palo Alto's firewalls with enabled GlobalProtect feature, which permitted unauthorized command execution. These recent findings underscore the persistent challenges in ensuring cybersecurity defenses and prompt updates for security solutions themselves.

DORA Regulation: What Financial Institutions Need To Do

As a cybersecurity company, Obrela is vigilant in monitoring the evolving regulations and how these impact our clients, especially those in the financial sector. With the introduction of the Digital Operational Resilience Act (DORA), we see a transformative step forward in the European Union’s approach to financial cyber resilience. Here’s an overview of what DORA entails and what it means for financial entities.

Fireblocks x Injective: Revolutionizing DeFi with Enhanced Security and Speed

Injective is an open, interoperable layer-one blockchain optimized for building Web3 finance applications. Injective’s bespoke infrastructure can be utilized to launch scalable dApps such as derivatives exchanges, RWA protocols, lending platforms, prediction markets, and more. Fireblocks offers secure and efficient access to engage with the advanced DeFi features available through Injective.

The ethical considerations for AI-powered software testing

As AI integrates into every stage of the SDLC, the area of software testing is undergoing transformative and unprecedented changes. In this article, we will discuss the ethical considerations for AI-powered software testing, examining the advantages and potential hurdles generative AI presents as a new technology being applied across the SDLC.