Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

chaossearch

Can You Use the ELK Stack as a SIEM? A Fresh Take

Oct 12, 2023 By David Bunting In ChaosSearch
A SIEM system (Security Information and Event Management) is often used by security operations centers (SOCs) for real-time detection of suspicious activity and security events. While some teams choose to adopt a purpose-built SIEM, others rely on the same DevOps tools they are already using for tasks like troubleshooting and operational log data analysis.
Read Post
bitsight

Vendor Due Diligence Checklist: 5 Steps to Selecting a Third-Party

Oct 12, 2023 By Kim Johnson In BitSight
Third-party vendors can open the doors to growth and competitiveness, but they can also introduce operational, cyber, or financial risks. Whether you’re starting out or an established business, the process of selecting and onboarding a new vendor is a critical juncture that requires careful due diligence. But what information should you collect from your vendors, and how can you verify that it’s accurate?
Read Post
nightfall

Nightfall AI and Snyk Partner to Offer Developers AI-Powered Secrets Scanning

Oct 12, 2023 By The Nightfall Team In Nightfall

SAN FRANCISCO, Oct. 12, 2023—Nightfall AI, the leader in cloud Data Leak Prevention (cloud DLP), today announced a partnership with Snyk, a leading developer security provider, to offer developers AI-powered secrets-scanning capabilities. Snyk and Nightfall are partnering to co-sell Nightfall's DLP platform alongside Snyk's Developer Security Platform.

Read Post
nightfall

Nightfall Partnered with Snyk to Make Developers' Lives Easier. Here's How.

Oct 12, 2023 By Madeline Day In Nightfall

As we announced earlier today, Nightfall is thrilled to team up with Snyk to provide a state-of-the-art security solution for developers working in every phase of the code-to-cloud lifecycle. But that’s just the “What”—now let’s dive into the “Why” and the “How.”

Read Post
egnyte

Transforming AEC's Digital Future with Autodesk and Egnyte's Solutions

Oct 12, 2023 By Aaron Vorwerk In Egnyte

The AEC industry has come a long way from traditional paper-based processes. With advancements in technology over the past three decades, there’s been a remarkable transformation towards a digital future. It began with Computer-aided Design (CAD), then Building Information Modeling (BIM), and eventually capabilities such as modeling, visualization, simulation, analysis, automation, generative design, and even AI.

Read Post
sysdig

CVE-2023-38545: High Severity cURL Vulnerability Detection

Oct 12, 2023 By Miguel Hernández In Sysdig

On October 11 a new version of curl (8.4.0) was released, where a couple of new vulnerabilities were fixed (CVE-2023-38545 with severity HIGH and CVE-2023-38546 with severity LOW). These issues were previously announced in the project’s discussion. At the time of this blog, there have been several proof of concepts released for CVE-2023-38545 which result in crashes, but not exploitation.

Read Post
cyberark

PAM and Cloud Security: The Case for Zero Standing Privileges

Oct 12, 2023 By Charles Chu In CyberArk

The cloud has introduced entirely new environments, roles and circumstances that require us to reimagine the definition of privileged access management (PAM) and how to apply those principles to secure identities. PAM was built on the notion that identities must be secured, not just managed, to protect an organization’s most valuable assets. The well-recognized values of PAM remain highly desirable – least privilege, role-based access control and auditability of high-risk sessions.

Read Post

The Role of AI in Email Security and How Real-Time Threat Intelligence Can Supercharge Your SOC Team

Oct 12, 2023 By KnowBe4 In KnowBe4
In response to improved email security measures, cybercriminals have pivoted to more advanced attack methods, namely artificial intelligence (AI), that bypass existing protections. But security defenders are also using AI in remarkable new ways to fortify their networks. Join Erich Kron, Security Awareness Advocate for KnowBe4, and Michael Sampson, Principal Analyst at Osterman Research, as they dig into the findings of our latest joint report on The Role of AI in Email Security. They’ll share tips on how your SOC team can identify and use AI to supercharge your anti-phishing defense.
View Video

Open-Source Intelligence (OSINT): Learn the Methods Bad Actors Use to Hack Your Organization

Oct 12, 2023 By KnowBe4 In KnowBe4
They are out there, watching and waiting for an opportunity to strike; the bad actors who have carefully researched your organization in order to set the perfect trap using easily found public resources. Open-Source Intelligence (OSINT) can provide cybercriminals everything they need to know to perfectly target your users by gathering data on everything from password clues to tech stack details, banking/credit card accounts, social media details and more. Emerging technologies like AI can make gathering this intelligence even easier.
View Video

Copyright © 2026 OpsMatters™. All rights reserved.