Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Arctic Wolf

Critical Vulnerability in Multiple WSO2 Products Exploited - CVE-2022-29464

Apr 28, 2022 By Sule Tatar In Arctic Wolf
Over the past week, threat actors have started scanning for and opportunistically exploiting CVE-2022-29464--a remote code execution vulnerability in multiple WSO2 products used to integrate application programming interfaces (API), applications, and web services. CVE-2022-29464 vulnerability has a CVSS score of 9.8 and severity of Critical which allowed unauthenticated and remote attackers to execute arbitrary code in the following products.
Read Post
Rubrik

Protecting your Microsoft 365 workloads with Rubrik SaaS

Apr 28, 2022 By Alpika Singh In Rubrik

There has been tremendous growth in Microsoft 365 usage with the current remote work trend, leading to an explosion of Microsoft 365 data. Microsoft infrastructure and platforms support the availability, reliability, and security of this infrastructure by providing world-class perimeter defense, controlling access to keep attackers out, and detecting risky behavior. However, customers are responsible for protecting the data itself - emails, chats, files, etc.

Read Post

Lessons From Billions of Breached Records by Troy Hunt of https://haveibeenpwned.com

Apr 28, 2022 By Teleport In Teleport
Security flaws, hackers and data breaches are the new normal. It’s not just those of us in the industry facing these foes every single day; it’s everyone. Whether you’re online or offline, you simply cannot exist today without your personal information being digitized in systems which are often left vulnerable and exploited at the whim of attackers. But who are these people — the ones who seek to break through our defenses and exploit our data? And how are they continually so effective at doing so, despite our best efforts?
View Video

Innovation lessons we can learn from hackers

Apr 28, 2022 By Teleport In Teleport
In 2022, Cyber Security is no longer about protecting secrets. It is about our way of life that relies on digital technology everywhere: from clouds to smartphones, from medical facilities to stock markets, and everything in between. In the past 2 years, threat actors have innovated faster than ever before, even using “growth hacking” tricks to increase the impact of their criminal enterprises. At the same time, our own connected lifestyle and digital footprint keep changing at breakneck speeds. How can we prepare for what comes next? By learning from hackers! @Keren Elazari — security researcher, TED speaker, and friendly hacker — joins us for a conversation on emerging security threats, new attack vectors and techniques, and innovation lessons we can learn from hackers.
View Video
mend

5 Vulnerability Assessment Scanning Tools: 5 Solutions Compared

Apr 28, 2022 By Adam Murray In Mend

Vulnerability assessments define, identify, classify, and prioritize flaws and vulnerabilities in applications, devices, and networks that can expose organizations, their products, services, code, and applications, to attack. Security vulnerabilities allow malicious actors to exploit an organization’s applications and systems, so it is essential to identify and respond to them before attackers can exploit them.

Read Post
Arctic Wolf

Cybersecurity Best Practices for the Oil and Gas Industry

Apr 28, 2022 By Arctic Wolf In Arctic Wolf
While every sector of the economy experiences cyber attacks, the oil and gas industry is a particularly enticing target because there are inherent weaknesses in its rapidly expanding digital landscape. It's also an industry that can't afford to go offline at any time, which means cybercriminals can force quick action from those they attack.
Read Post
cyphere

What is a watering hole attack?

Apr 28, 2022 By Editor In Cyphere

The advance of the 21st century brought with it a significant shift in the work scene. Every industry and field relies heavily on computers and the digital world to function seamlessly. However, with it came the ever-mounting fear of cyber attack. Among the many forms of cyber attack is a watering hole attack, also known as a supply chain attack. In a watering hole attack, attackers mainly try to compromise a user by infecting the user’s computer and gaining access to the network.

Read Post
CrowdStrike

Falcon Fusion Accelerates Orchestrated and Automated Response Time

Apr 28, 2022 By Janani Nagarajan In CrowdStrike

In the recent MITRE Engenuity ATT&CK Enterprise Evaluation — which emulated today’s two most sophisticated Russian-based adversaries, WIZARD SPIDER and VOODOO BEAR (Sandworm Team) — CrowdStrike Falcon achieved 100% automated prevention across all of the evaluation steps.

Read Post

#BigPictureCyber Town Hall With Michael McLaughlin, UMD ARLIS | 4/27/22 | NeoSystems

Apr 28, 2022 By NeoSystems In NeoSystems
NeoSystems #BigPictureCyber Town Hall Series: Join NeoSystems’ Chief Information Security Officer, Ed Bassett, for our weekly #BigPictureCyber Town Hall designed for the Defense Industrial Base and GovCon community. Each session features special guests and offers an opportunity for attendees to ask questions regarding CMMC and cybersecurity. Topics covered include CMMC compliance requirements, cybersecurity news, how to prepare for CMMC certification, and the latest updates from the CMMC AB.
View Video

Copyright © 2026 OpsMatters™. All rights reserved.