Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

levelblue

Prevent, Detect, Contain: LevelBlue MDR's Guide Against Black Basta Affiliates' Attacks

Mar 7, 2025 By Ken Ng In LevelBlue
Between December 2024 and February 2025, the LevelBlue MDR team saw over a dozen attempts and a handful of successful intrusions by threat actors (TAs). Internally, we broadly attribute these attacks to the Black Basta ransomware gang. As outlined by other cybersecurity researchers’ reporting of similar tactics, techniques, and procedures (TTPs) observed; there is a high probability that this activity is from affiliate groups or initial access brokers.
Read Post
keeper

Protecting Privileged Accounts With FIDO2 Security Keys

Mar 7, 2025 By Jaryeong Kim In Keeper
Securing privileged accounts with FIDO2 security keys is the best way to protect them from internal and external threats because they offer enhanced security and convenience compared to traditional authentication methods. Continue reading to learn more about why traditional methods are insufficient for protecting privileged accounts, how FIDO2 enhances security and the benefits of using FIDO2 for privileged accounts.
Read Post
CrowdStrike

How Three Industry Leaders Are Stopping Identity-Based Attacks with CrowdStrike

Mar 7, 2025 By Ryan Terry In CrowdStrike
The CrowdStrike 2025 Global Threat Report highlights the ongoing threat of identity-based attacks. Adversaries are increasingly exploiting stolen credentials to evade detection, and 79% of detections overall were classified as malware-free. Valid account abuse became the primary initial access method in 35% of cloud intrusions. The report also shares that access broker advertisements rose by 50% year-over-year, indicating a rise in demand for valid credentials and other forms of access.
Read Post
SecurityScorecard

Lazarus Group Targets Developers Through NPM Packages and Supply Chain Attacks

Mar 7, 2025 By SecurityScorecard In SecurityScorecard
North Korea’s Lazarus Group is evolving its tactics again. The latest campaign, dubbed Operation Marstech Mayhem, introduces an advanced implant named “Marstech1.” This malware is designed to compromise software developers and cryptocurrency wallets through manipulated open-source repositories. Unlike previous Lazarus operations, this campaign employs obfuscation techniques that make detection significantly harder. Read the full report here.
Read Post
Cybriant

HIPAA and Cybersecurity Compliance - An Overview

Mar 7, 2025 By Cybriant In Cybriant
In today’s digital world, protecting sensitive patient information is more critical than ever. The Health Insurance Portability and Accountability Act (HIPAA) sets strict standards to safeguard healthcare data, requiring organizations to maintain robust cybersecurity measures. Compliance with HIPAA is not just a legal requirement—it’s essential for maintaining patient trust and avoiding costly penalties.
Read Post
securitysenses

Dedicated and Virtual Servers in USA, Germany and Netherland - Reliable Hosting with DeltaHost

Mar 7, 2025 By SecuritySenses In SecuritySenses
DeltaHost is a Ukrainian company specializing in hosting services, including dedicated server and virtual private server (VPS/VDS) rentals. The company offers its services in various locations, such as the Netherlands, Germany, Ukraine, and the USA, ensuring fast server deployment, 24/7 support, and user-friendly management panels.
Read Post
securitysenses

Reasons to Switch to Cloud-Based Video Surveillance

Mar 7, 2025 By SecuritySenses In SecuritySenses
Keeping your property secure is more important than ever, and traditional surveillance systems may not provide the flexibility and protection you need. Cloud-based video surveillance offers a modern alternative that allows users to monitor their homes or businesses from anywhere. Companies like Stratus Infosystems provide solutions that enhance security with remote access and AI-powered tools. Unlike older systems that rely on physical storage, cloud solutions offer greater accessibility, security, and convenience. Here are five reasons why making the switch is a smart move.
Read Post
protegrity

Inside a Cyberattack: How Hackers Steal Data

Mar 6, 2025 By Dave Gray, VP EMEA and Glenn Wilkinson, Professional Hacker and Speaker In Protegrity
The truth about cybersecurity is that it's almost impossible to keep hackers outside of an organisation, particularly as the cybercrime industry becomes increasingly sophisticated and their technology more advanced. Furthermore, once a hacker has broken through an organisation's defences, it is relatively easy to move within the network and access information without being detected for days and even months. This is a significant concern for Banking and Financial Services organisations, which house valuable sensitive and Personally Identifiable Information (PII).
Read Post
bitsight

The Top 7 Cybersecurity Frameworks

Mar 6, 2025 By Eric Cisternelli In BitSight
In today’s ever evolving threat landscape, protecting an organization's digital assets is no longer optional—it's a critical business imperative. Security ratings can provide a snapshot of your organization's cyber health, but to demonstrate a robust, long-term commitment to cybersecurity, it’s essential to align with recognized industry and regulatory best practices. This is where cybersecurity frameworks come into play.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.