Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

McHacking - The 443 Podcast - Episode 317

Jan 13, 2025 By WatchGuard In WatchGuard
This week on the podcast, we cover security researcher Eaton Zveare's recent blog post on a trove of vulnerabilities they found in McDonalds India's McDelivery web application. Before that, we give an update on Salt Typhoon's latest US government victim and discus an attack involving hijacked Google Chrome extensions. The 443 Security Simplified is a weekly podcast that gets inside the minds of leading white-hat hackers and security researchers, covering the latest cybersecurity headlines and trends.
View Video
knowbe4

Deepfakes, Shallow Morals: The Real Issue Behind the UK's Crackdown

Jan 13, 2025 By Javvad Malik In KnowBe4
The UK government decided to wage war on explicit deepfakes. About time, right? But before we start celebrating, let's take a closer look. The fact is that this isn’t about technology, it’s about human behaviour. The government is not trying to outright ban deepfakes, which would be impossible, to be honest. They're targeting the misuse of this tech for nefarious purposes.
Read Post
cyberint

Ransomware Annual Report 2024

Jan 13, 2025 By Adi Bleih In Cyberint
In 2024, the ransomware landscape recorded 5,414 published attacks on organizations worldwide, representing an 11% increase compared to 2023. While the year began with a decline in ransomware activity during Q1, the frequency of attacks surged in Q2 and continued to rise through the remainder of the year. This culminated in a dramatic spike during Q4, which saw 1,827 incidents—33% of all ransomware attacks for the year—making it the most active quarter.
Read Post
outpost 24

CISO predictions: What does 2025 hold for attack surface management (ASM)?

Jan 13, 2025 By Marcus White In Outpost 24
We’ve asked Outpost24’s CISO, Martin Jartelius, what 2025 is likely to hold for organizations using attack surface management (ASM) tools. Here’s what Martin had to say about what he predicts for ASM in 2025, as well as some thought on how the CISOs role might change.
Read Post
fidelis security

Multi-factor Authentication for Active Directory: Fighting MFA Fatigue Attacks

Jan 13, 2025 By Fidelis Security In Fidelis Security
In 2024, cyberattacks aimed at MFA flaws increased by an astounding 40%. This concerning pattern indicates a sharp rise in the complexity of cyberthreats that businesses now have to deal with. Cybercriminals are now adopting psychological strategies in addition to technical ones, such as MFA fatigue attacks, which alter human behavior to obtain unauthorized access to vital systems. This is a wake-up call, not just a number.
Read Post
safeaeon

Is Facebook Marketplace Really Safe? Find Out

Jan 13, 2025 By SafeAeon Inc. In SafeAeon
By bringing people in the same area together, online markets like Facebook Marketplace have changed the way people buy and sell things. But this ease of use comes with possible risks, which makes many people wonder: is Facebook Marketplace safe? Every day, millions of people use the site successfully, but there are also a lot of frauds, scams, and safety concerns. Statista says that over 1 billion people use Facebook Marketplace every month, which makes it a great target for hackers.
Read Post
safeaeon

Endpoint Management: Best Practices to Secure Every Device Across Your Network

Jan 13, 2025 By SafeAeon Inc. In SafeAeon
Endpoint management is an important part of network protection in today's digital world because everything is connected. As more devices, like computers, smartphones, and Internet of Things (IoT) gadgets, appear on the market, it becomes harder for businesses to keep their networks safe. A study from 2023 on cybersecurity says that over 70% of data breaches are caused by endpoints that have been hacked.
Read Post

WordPress Two-factor Authentication Plugin | WordPress 2FA Plugin

Jan 13, 2025 By miniOrange In miniOrange
Protect Your WordPress Site with miniOrange Two-Factor Authentication (2FA)! miniOrange’s Two-Factor Authentication (2FA) provides an extra layer of security to keep your data safe from unauthorized access. Our 2FA solution is simple, reliable, and user-friendly, ensuring only verified users can log in to your site. With more than 15+ 2FA options like OTP over SMS/email, and authenticator apps, you can choose the method that works best for you.
View Video
cycognito

Emerging Threat: Ivanti Connect Secure CVE-2025-0282 and CVE-2025-0283

Jan 13, 2025 By Emma Zaballos In CyCognito
On Wednesday, January 8th, Ivanti disclosed two severe vulnerabilities affecting Ivanti Connect Secure VPN devices. Ivanti Connect Secure is an external-facing SSL VPN used to secure remote access to corporate networks. Ivanti Policy Secure is an internal network-access control solution designed for regulating access within an enterprise’s network. The critical vulnerability (CVSS 9.0) CVE-2025-0282 allows unauthenticated remote code execution (RCE) through a stack-based buffer overflow.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.