Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

tripwire

Gaining Network Transparency with Asset Discovery and Compliance for IT/OT

Jun 24, 2024 By Faisal Parkar In Tripwire
I recently came across the "Johari Window Model" and thought this would be a good way to gain inspiration to explain the conundrum faced by many cybersecurity customers. The table below shows us the breakdown of the stages that are applicable not just to IT and OT environments but also to other facets of our daily lives. This model can be applied to asset discovery and Fortra's Security Configuration Management (SCM) system.
Read Post
tripwire

7 Challenges in Scaling SOC Operations and How to Overcome Them

Jun 24, 2024 By Josh Breaker-Rolfe In Tripwire
In the past four years, cyberattacks have more than doubled. Cybercriminals are leveraging emerging technologies like artificial intelligence (AI) to facilitate more sophisticated attacks. Geopolitical tumult has increased cyber risk. Couple these factors with a near-ubiquitous desire for businesses to expand their operations, and it’s easy to understand the need for scaling Security Operations Center (SOC) operations.
Read Post

The 443 Podcast - Episode 295 - Snowflake Breach Campaign

Jun 24, 2024 By WatchGuard In WatchGuard
This week on the podcast we doscuss two issues from this month's Microsoft patch tuesday that deserve your attention. After that we discuss the recent data theft campain targeting Snowflake customers that has impacted over 100 organizations. We end the episode with an update on the hackers behind the MGM and Caesar's Entertainment breaches last year. The 443 Security Simplified is a weekly podcast that gets inside the minds of leading white-hat hackers and security researchers, covering the latest cybersecurity headlines and trends.
View Video
lookout

What's New With Lookout: Simplifying SSE

Jun 24, 2024 By Charity Spiri In Lookout
Organizations continue to endure the challenges that come along with the rapid migration to the cloud, like securing and managing data that is now spread across multiple networks, clouds, and apps. Outdated technologies have led to disjointed, hard-to-manage solutions that struggle to keep up with evolving security threats. But fear not! Lookout is here to help.
Read Post
Arctic Wolf

CVE-2024-37079 & CVE-2024-37080: Critical Heap-overflow Remote Code Execution Vulnerabilities in VMware vCenter Server and Cloud Foundation

Jun 24, 2024 By Andres Ramos In Arctic Wolf
On June 17, 2024, VMware disclosed two critical vulnerabilities (CVE-2024-37079 & CVE-2024-37080) affecting vCenter Server and Cloud Foundation. These vulnerabilities stem from a heap-overflow issue in the implementation of the DCERPC protocol which can be exploited by remote threat actors. By sending specially crafted network packets, threat actors could exploit CVE-2024-37079 and CVE-2024-37080 to achieve Remote Code Execution (RCE) on both vCenter Server and Cloud Foundation systems.
Read Post
Arctic Wolf

CDK Global Cyber Incident Affects Automotive Dealers Across the US

Jun 24, 2024 By Stefan Hostetler In Arctic Wolf
On June 19, 2024, CDK Global notified customers that a cyber incident had led to a shutdown of its systems, significantly impacting car dealerships across the United States. CDK Global serves nearly 15,000 dealership locations, and the incident caused substantial disruption, forcing car dealerships to halt operations and revert to manual processes. Dealerships were initially notified about the incident around 2AM Eastern time on June 19, 2024, with an update at 8AM confirming the incident.
Read Post
kovrr

Materiality Analysis Offers Risk Managers Data-Driven Loss Thresholds

Jun 24, 2024 By Kovrr In Kovrr
‍Determining and disclosing impactful events has been a longstanding practice for organizations operating within the US market. As early as 1933, with the Securities Act, publicly traded businesses were required to disclose “material information” regarding their security environment, allowing shareholders to make more informed investment decisions.
Read Post
CalCom

Creating symbolic links - Like shortcuts but better

Jun 24, 2024 By Ben Balkin In CalCom
The create symbolic links user right determines the users ability to create a symbolic link within Windows from the device they’re logged on to. These links point to other files or folders, just like regular shortcuts, but works in a more advanced way. Symbolic links help maintain organization and flexibility while minimizing potential security risks by giving the ability to create a link in one folder that points to a file in a different folder, making it seem like the file exists in both places.
Read Post

How Cloudflare accelerates digital modernization efforts

Jun 24, 2024 By Cloudflare In Cloudflare
You need to accelerate digital modernization to stay competitive, but complex tech stacks limit your modernization initiatives. Cloudflare’s connectivity cloud simplifies management and new tech adoption across networks, web apps, security, and development, making it easier to embrace a wide range of digital services.
View Video
Zenity

Building Apps at Scale in Power Platform? Not for the Faint of Heart... or CoE Security

Jun 24, 2024 By Ziv Daniel Hagbi In Zenity
Enterprises are racing to adopt AI copilots and low-code/no-code platforms to innovate and maximize efficiency by placing powerful technology and development tools in the hands of all business users. While the productivity gains are enormous, so are the security risks, as the nature of these copilots and low-code platforms results in a surge of new business apps being created at the enterprise.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.