Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Arctic Wolf

Challenge Accepted: An Appointment with Dr. Zero Trust

Dec 21, 2022 By Arctic Wolf In Arctic Wolf
Challenge Accepted is a podcast from Arctic Wolf that has informative and insightful discussions around the real-world challenges organizations face on their security journey. Hosted by Arctic Wolf’s VP of Strategy Ian McShane and Chief Information Security Officer (CISO) Adam Marrè, the duo draw upon their years of security operations experience to share their thoughts and opinions on issues facing today’s security leaders.
Read Post
syteca

How Can the MITRE ATT&CK Framework Help You Mitigate Cyber Attacks?

Dec 21, 2022 By Syteca In Syteca
Each year, cyber attacks and data breaches are becoming more devastating for organizations. According to the 2022 Cost of a Data Breach Report by IBM, the global average cost of a data breach reached a record US$4.35 million in 2022. However, security teams are often not ready to detect all security gaps in their organizations. The scope of their monitoring is usually so broad that it’s challenging to anticipate where a potential threat might come from.
Read Post
netwrix

Firewall Log Management and SIEMs

Dec 21, 2022 By Dirk Schrader In Netwrix

Firewalls are the first line of defense in any network. Firewalls can be software or appliances, and organizations can configure them up to allow or disallow some or all IP traffic, or to verify specific traffic types based on rules that use deep packet inspection. For maximum effectiveness, it’s critical to monitor the operation of your firewalls to spot threats and misconfiguration.

Read Post
netwrix

What is Database Hardening and Why Is It Critical?

Dec 21, 2022 By Dirk Schrader In Netwrix

Hardening the various systems across your network helps you improve your cybersecurity posture level and block attacks. Hardening includes regular patching of known software vulnerabilities and turning off nonessential services on each system to reduce the number of processes that can be exploited. Hardening your database servers is a vital part of this information security strategy.

Read Post

Secure your application development with AWS and Mend

Dec 21, 2022 By Mend In Mend
Mend, formerly known as WhiteSource, effortlessly secures what developers create. Mend uniquely removes the burden of application security, allowing development teams to deliver quality, secure code, faster. With a proven track record of successfully meeting complex and large-scale application security needs, the world’s most demanding software developers rely on Mend. The company has more than 1,000 customers, including 25 percent of the Fortune 100, and manages Renovate, the open source automated dependency update project.
View Video
Arctic Wolf

New Microsoft Exchange Exploit Chain via "OWASSRF" Leads to RCE

Dec 21, 2022 By James Liolios In Arctic Wolf
On Wednesday, December 21, 2022, security researchers shared that they observed ransomware threat actors using a new exploit chain that bypasses the ProxyNotShell URL rewrite mitigations that were shared by Microsoft in September and October. This new exploit chain works by abusing CVE-2022-41080 & CVE-2022-41082 and leads to remote code execution on affected Exchange servers through Outlook Web Access (OWA).
Read Post
Arctic Wolf

Arctic Wolf Labs Named Open-Source Tool Creator of the Year by SANS Institute

Dec 21, 2022 By Arctic Wolf Labs In Arctic Wolf
“It’s about doing good and doing it exceedingly well.” This was how Daniel Thanos, Head of Arctic Wolf Labs, described the work of Arctic Wolf Labs when accepting the award for Open-Source Tool Creator of the Year, as voted by the SANS Insitute community at the 2022 Difference Makers Awards. This prestigious awards program “honors individuals and teams in the cyber security community who have made a measurable and significant difference in security.”
Read Post
inetco

Don't Let the Grinch Steal Your Christmas: Preventing Holiday Season Fraud

Dec 21, 2022 By Ben Drake In INETCO

It’s that time of year again – the holidays are here, and everywhere you turn, you see the hustle and bustle of consumers eagerly (or desperately) searching for the perfect gifts to put under the tree. Unfortunately, the holiday season isn’t just for shoppers; it’s also prime time for financial fraudsters looking to conduct holiday season fraud. According to a 2020 survey by Experian, one in every four U.S. consumers reported they fell for a fraud scheme during the holidays.

Read Post
sysdig

Sysdig Secure and Google Security Command center Integration - Why, What, How

Dec 21, 2022 By Durgesh Shukla In Sysdig

Sysdig is a premier Google Cloud Platform (GCP) partner and has been working with Google towards the common goal of supporting our customers and securing their cloud journey for the last seven years. Sysdig is focused on securing and monitoring workloads running on Google Cloud – including Google Kubernetes Engine (GKE), Autopilot, Anthos, and more. All these various elements of GCP can be protected using Google Security Command Center. Learn more about how to enhance your GCP security.

Read Post
upguard

Why is HECVAT Important? Cybersecurity Risks in Education

Dec 21, 2022 By Kyle Chin In UpGuard

The HECVAT (Higher Education Community Vendor Assessment Tool or Higher Education Community Vendor Assessment Toolkit) is a security framework and template that higher education institutions can use to measure the security risks associated with potential or existing vendors. HECVAT is excellent for higher ed institutions because many third-party organizations tend to have structures and follow practices that lend themselves to increased cybersecurity risk.

Read Post

Copyright © 2026 OpsMatters™. All rights reserved.