Showing results for: Security

1156 results found
Surging Tide of E-Commerce Security Threats: Insights from SOCRadar's Report
November 23, 2023

Surging Tide of E-Commerce Security Threats: Insights from SOCRadar’s Report

In recent years, the e-commerce industry has become a prime target for cybercriminals, making e-commerce security more critical than ever. According to the SOCRadar report, phishing, credit card fraud, and exploitation of vulnerabilities are the… Continue Reading

Predicting Vulnerability Exploitation for Proactive Cybersecurity: What’s EPSS, and How Can SVRS Enhance It?
November 17, 2023

Predicting Vulnerability Exploitation for Proactive Cybersecurity: What’s EPSS, and How Can SVRS Enhance It?

Predicting outcomes closely before taking action is a fundamental aspect of effective decision-making. Whether in our personal lives, business strategies, or even the realm of technology, the ability to anticipate and prepare for potential developments… Continue Reading

Education Security: A Critical Analysis of the K-12 Threat Landscape
November 17, 2023

Education Security: A Critical Analysis of the K-12 Threat Landscape

As digital transformation reshapes the education sector, education security in K-12 schools has emerged as a crucial concern. The comprehensive analysis provided by SOCRadar's US Education K-12 Threat Landscape Report emphasizes the growing need for robust cybersecurity… Continue Reading

Critical and High Vulnerabilities in Citrix ADC and Citrix Gateway (CVE-2023-3519, CVE-2023-3466, CVE-2023-3467)
November 16, 2023

Citrix Hypervisor Security Update: Addressing CVE-2023-23583 and CVE-2023-46835 Vulnerabilities

In the dynamic field of cybersecurity, staying abreast of new vulnerabilities is crucial. The recent discovery of two significant vulnerabilities in the Citrix Hypervisor, a widely used virtualization management tool, underscores this necessity. This blog… Continue Reading

SAP November 2023 Security Patch Day: Critical Business One Vulnerability Has Been Fixed (CVE-2023-31403)
November 16, 2023

SAP November 2023 Security Patch Day: Critical Business One Vulnerability Has Been Fixed (CVE-2023-31403)

SAP, a prominent enterprise software company, has unveiled three new vulnerabilities in its November 2023 Security Patch Day update. The company has also updated security notes for three previously disclosed security vulnerabilities. The most critical… Continue Reading

SoCRadar webinar Nov 2020
November 12, 2023

The Future of MSSPs: Trends and Challenges in the Cybersecurity Industry

The Future of MSSPs: Trends and Challenges in the Cybersecurity Industry Continue Reading

Lessons Learned From Israel-Hamas Conflict: A Cybersecurity Perspective
November 10, 2023

Lessons Learned From Israel-Hamas Conflict: A Cybersecurity Perspective

The Israel-Hamas conflict, which started with the surprise attack of Hamas militants on Israeli territory on October 7, escalated in a very short time with Israel's declaration of war and is continuing. This tragic event,… Continue Reading

Sumo Logic Security Breach: Unauthorized Access to AWS with Stolen Credentials
November 9, 2023

Sumo Logic Security Breach: Unauthorized Access to AWS with Stolen Credentials

Sumo Logic, a cybersecurity company renowned for its expertise in cloud-based log management, analytics, and insights, recently disclosed a security breach. The breach came to light when the company detected unauthorized access to its Amazon… Continue Reading

Security Breach in Okta Support System Continues Sparking Concerns: Cloudflare and 1Password Share Disclosures
October 24, 2023

Security Breach in Okta Support System Continues Sparking Concerns: Cloudflare and 1Password Share Disclosures

On October 20, 2023, Okta Security detected malicious activity that exploited a stolen credential, allowing unauthorized access to the company's support case management system. Several other vendors, also affected by the incident, have since shared… Continue Reading

SolarWinds Releases Crucial Fixes for ARM Security Vulnerabilities (CVE-2023-35182, CVE-2023-35185, and CVE-2023-35187)
October 20, 2023

SolarWinds Releases Crucial Fixes for ARM Security Vulnerabilities (CVE-2023-35182, CVE-2023-35185, and CVE-2023-35187)

In the ever-evolving landscape of cybersecurity, staying ahead of threats is paramount for security professionals. Recently, SolarWinds Access Rights Manager (ARM), a comprehensive access management solution, has been the focus due to multiple discovered vulnerabilities.… Continue Reading

Taking the Power of ChatGPT Behind You for Enhanced Cybersecurity: A Guide for CISOs
October 20, 2023

Taking the Power of ChatGPT Behind You for Enhanced Cybersecurity: A Guide for CISOs

In today's rapidly evolving digital landscape, Chief Information Security Officers (CISOs) face an uphill battle to safeguard their organizations from an ever-increasing array of cyber threats. The rise of Artificial Intelligence (AI) has not only… Continue Reading

New Cybersecurity Rules of SEC: What Businesses Need to Know
October 19, 2023

New Cybersecurity Rules of SEC: What Businesses Need to Know

The U.S. Securities and Exchange Commission (SEC), a regulatory body responsible for overseeing securities markets and protecting investors, has recently introduced new rules regarding the disclosure of cybersecurity incidents. As cybersecurity professionals, it is vital… Continue Reading

VBScript Is Retiring: From Scripting to Security Threats
October 10, 2023

VBScript Is Retiring: From Scripting to Security Threats

VBScript is facing retirement as Windows moves forward. In future Windows releases, VBScript will be offered as a feature on demand before its eventual removal from the operating system. This ensures that users have time… Continue Reading

Breaking Down the Top 10 Cybersecurity Misconfigurations by NSA and CISA
October 6, 2023

Breaking Down the Top 10 Cybersecurity Misconfigurations by NSA and CISA

Security misconfigurations occur when systems or applications are not correctly set up, leaving them vulnerable to potential security threats. According to OWASP, approximately 90% of the applications they assessed exhibited some form of misconfiguration, and… Continue Reading

September 29, 2023

Exclusive Interview: Dark Web Monitoring, AI’s Role and Strategic Investments in Cyber Security

We are delighted to present an exclusive interview with Nigel Simpson, Head of Global Cybersecurity for International Data Group. With an inspiring career that reflects a deep commitment to safeguarding the digital world, Nigel brings… Continue Reading

The Torrent Landscape: Understanding Security, Risks, and the Future
September 29, 2023

The Torrent Landscape: Understanding Security, Risks, and the Future

In today's digital age, the term "torrenting" often evokes images of pirated movies, music, or TV shows. However, the world of torrents is much broader than just illegal content. Torrenting, at its core, is a… Continue Reading

NIST Cybersecurity Framework 2.0: What You Need to Know
September 26, 2023

NIST Cybersecurity Framework 2.0: What You Need to Know

In a previous SOCRadar blog post, we delved into the importance of cybersecurity frameworks for today’s organizations. In this installment, we pivot our focus toward the much-anticipated NIST Cybersecurity Framework 2.0. As cyber threats evolve,… Continue Reading

September 26, 2023

AISA Annual Cybersecurity Summit

AISA Annual Cybersecurity Summit October 17-19 2023 / Melbourne Exhibition and Convention Centre Booth No: 95 As SOCRadar, we are participating in the upcoming AISA Annual Cybersecurity Summit event with our valuable partner KODE-1. The… Continue Reading

Critical RCE Flaw Fixed in New Versions of GitLab
September 20, 2023

GitLab’s Critical Security Update: What You Need to Know (CVE-2023-5009)

GitLab is a widely-used DevOps platform that allows for code hosting, continuous integration, and other collaborative features for both Community and Enterprise users. A new critical security release has just been rolled out for GitLab… Continue Reading

SOCRadar helps you visualize digital risk, and reduce your company's attack surface
Request Demo