Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

securitysenses

How Cyber Threats Can Derail Follower Growth

Jan 23, 2025 By SecuritySenses In SecuritySenses
To reach your target audiences, businesses and influencers need an online presence and a large social media following. But as the need for digital platforms soars, those same platforms become even more dependent on being vulnerable to cyber threats that can wipe out follower growth, engagement, and more.
Read Post
Featured Post
ThreatQuotient

Taking a Threat Adapted Approach to Vulnerability Management

Jan 22, 2025 By Chris Jacob, VP and Will Baxter, Security Engineer In ThreatQuotient
As cyber threats continue to grow in complexity and frequency, vulnerability management requires more than just patching systems; it demands a dynamic, threat-adapted approach. As part of Cyber Rhino Threat Week (9-13th of December 2024) which aimed to inform, sharing threat intelligence insights and best practices with our customers, partners and industry ecosystem, we held a session that explored how integrating Threat Intelligence into Vulnerability Management can transform the way organisations prioritise and respond to risks.
Read Post
bitsight

Instant Insights for SOC 2 Reporting: Using AI to Streamline Vendor Assessments

Jan 22, 2025 By Greg Keshian In BitSight
With technology supply chain risks at an all-time high, many governance, risk, and compliance (GRC) teams conduct formal risk assessments as part of their new vendor selection and onboarding processes. Audit-based reporting frameworks like SOC 2 are invaluable to these efforts, as they provide a consistent way to benchmark prospective vendors’ customer data management practices.
Read Post
lookout

Elevating Endpoint Security: Lookout Mobile Intelligence APIs

Jan 22, 2025 By Alan Phillips In Lookout
There’s no denying that mobile devices have become essential tools for employees — they facilitate communication and boost productivity by providing access to corporate resources from virtually anywhere. But that convenience comes at a cost. The role of the mobile device, in terms of how much can be done with them and the amount of data they can give users access to in a convenient and familiar form factor, has made them indispensable to the modern workforce.
Read Post
syteca

Password Policy Compliance Overview: NIST 800-63, HIPAA, PCI DSS, and the GDPR

Jan 22, 2025 By Syteca In Syteca
In the digital age, where cyber threats loom large and data breaches have become all too common, the humble password remains a vital security gatekeeper. Yet, with stolen credentials accounting for 31% of breaches, according to Verizon’s 2024 Data Breach Investigations Report, it’s clear that organizations often fail to protect passwords.
Read Post
Spectral

A Developer's Guide to Running an SCA Scan

Jan 22, 2025 By Eyal Katz In Spectral
Your IT infrastructure is a complicated network of systems and activities that generate massive volumes of data every second. Hidden within this data stream is the key to understanding your systems’ health and potential dangers. The dangers are significant, given that the average worldwide data breach costs an exorbitant $4.45 million. One such security breach can destroy your organization, resulting in legal fines, financial loss, and harm to your reputation.
Read Post
tripwire

Understanding Microsoft's CVSS v3.1 Ratings and Severity Scores

Jan 22, 2025 By Tyler Reguly In Tripwire
Recently, I looked at Microsoft’s assigned CVSS v3.1 scores for Patch Tuesday vulnerabilities alongside the Microsoft assigned severity ratings. I wanted to revisit these numbers and see just how closely CVSS aligns with Microsoft’s opinion of severity. Disclaimer: I’m aware that CVSS v4.0 exists. However, Microsoft has not yet adopted it, and I wanted an apples-to-apples comparison.
Read Post
tripwire

CIS Control 05: Account Management

Jan 22, 2025 By Matthew Jerzewski In Tripwire
Knowing who has credentials, how those credentials are granted, and how they are being used is the foundation of any secure environment. It begins with user accounts and the credentials they use. Maintaining a thorough inventory of all accounts and verifying any changes to those accounts as authorized and intentional vs unintended is paramount to establishing a secure environment, and this includes service accounts.
Read Post
tripwire

From Alerts to Action: How AI Empowers SOC Analysts to Make Better Decisions

Jan 22, 2025 By Josh Breaker-Rolfe In Tripwire
Security Operations Center (SOC) analysts have it rough. Modern security tools generate an extraordinary number of alerts, attackers are more sophisticated than ever, and IT infrastructures are unprecedentedly complex. As a result, analysts are overwhelmed with workload and alerts, making it near-impossible to make intelligent, informed decisions. Fortunately, artificial intelligence (AI) is helping to ease the strain. Let’s look at how.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.