%term

The latest News and Information on CyberSecurity for Applications, Services and Infrastructure, and related technologies.

A Process for DDoS Incident Response

Apr 28, 2025 By Gilad Maayan In OnPage

A distributed denial of service (DDoS) attack overwhelms a server, service, or network with internet traffic to disrupt or halt normal operations. This is typically achieved by multiple compromised systems flooding the target with traffic. The result is that legitimate users cannot access the systems or services, causing significant operational and financial impact.

Read Post

OnPage

Read more about A Process for DDoS Incident Response

Bulletproof strategies against 6 security incident types

Apr 26, 2025 By Leo Baecker In Hyperping

Every 11 seconds, a business falls victim to a cyberattack. The financial impact is staggering: $10.5 trillion in annual damages predicted in 2025. But beyond the immediate costs, security incidents can permanently damage your reputation, destroy customer trust, and even force your company to close its doors. What's particularly alarming is how unprepared most organizations are.

Read Post

Hyperping

Read more about Bulletproof strategies against 6 security incident types

Part 2: Solving the Top 10 Problems with Vulnerability Management

Apr 25, 2025 By Ivanti In Ivanti

Once again, we're back with all the answers. Traditional vulnerability management comes with many pitfalls, and we're counting down the solutions to all the problems you might be running into. Ivanti's Chris Goettl and Robert Waters break down the back five on our list: a periodic approach to remediation, poor prioritization, lack of business context, overreliance on patch management, and poor metrics and reporting.

View Video

Ivanti

Read more about Part 2: Solving the Top 10 Problems with Vulnerability Management

Is Your Attack Surface Growing Faster Than Your Security?

Apr 25, 2025 By OpsMatters In OpsMatters

In today's digital-first business environment, the race to adopt new technologies often outpaces the strategies to secure them. From cloud services to remote work tools, organizations are rapidly expanding their digital presence. However, with every new tool, platform, or endpoint comes a new potential vulnerability. This expanding "attack surface" can leave businesses exposed, especially if they don't actively monitor and manage it.

Read Post

OpsMatters

Read more about Is Your Attack Surface Growing Faster Than Your Security?

How HTTPS (HTTP) Proxies Differ from SOCKS5: Understanding Protocol Differences

Apr 25, 2025 By OpsMatters In OpsMatters

A proxy server functions as a go-between for the client and the destination server. It's commonly used to bypass content restrictions, boost online security, and improve anonymity. There are several types of proxy protocols available, with HTTP and SOCKS being among the most widely used. But how exactly do they differ-and how should you decide which one to use?

Read Post

OpsMatters

Read more about How HTTPS (HTTP) Proxies Differ from SOCKS5: Understanding Protocol Differences

N-able Report Reveals the Future of the SOC Relies on AI, While Human Intervention Remains Essential

Apr 24, 2025 By N-able In N-able

As cybersecurity challenges intensify, AI will fuel Security Operations Center (SOC) advancements and empower human analysts to improve defense and overcome alert fatigue.

Read Post

N-able

Read more about N-able Report Reveals the Future of the SOC Relies on AI, While Human Intervention Remains Essential

OWASP CI/CD Top 10: Inadequate IAM

Apr 24, 2025 By Nigel Douglas In Cloudsmith

In the race to ship software faster, many teams have turned to automation, decentralised tools, and powerful pipelines. But lurking under the surface of these streamlined processes is a growing and often invisible Identity and Access Management (IAM) threat vector. — a core vulnerability in modern CI/CD security.

Read Post

Cloudsmith

Read more about OWASP CI/CD Top 10: Inadequate IAM

CFEngine: The agent is in 48 - Using CFEngine for Android application inventory & management

Apr 24, 2025 By CFEngine In CFEngine

"CFEngine: The agent is in" is our monthly webinar series, where we show new features, teach best practices, and keep the community informed about everything CFEngine.

View Video

CFEngine

Read more about CFEngine: The agent is in 48 - Using CFEngine for Android application inventory & management

How to Build a Successful SIEM Migration Strategy

Apr 24, 2025 By Ed Bailey In Cribl

At least once a week, a team reaches out to discuss migrating from an established SIEM or analysis platform. This major decision is influenced by several compelling factors, which can create significant work for engineering teams and pose risks to the business. The cost of switching to a new platform, often referred to as displacement costs, can be substantial.

Read Post

Cribl

Read more about How to Build a Successful SIEM Migration Strategy

Generating and Tracking SBOMs with Kosli: Enhancing Software Security and Supply Chain Transparency

Apr 23, 2025 By Mike Long In Kosli

Software Bill of Materials (SBOMs) are crucial for maintaining software security and supply chain transparency. They provide a detailed list of all components, libraries, and dependencies within a software application, enabling organizations to identify and address potential vulnerabilities, license compliance issues, and other risks. By generating and tracking SBOMs in Kosli, you can establish a centralized and auditable repository for your software’s supply chain information. This allows you to.

Read Post