Operations | Monitoring | ITSM | DevOps | Cloud

haproxy

Protect Against Netscaler Vulnerability CitrixBleed

Jan 12, 2024 By Jakub Suchy In HAProxy
CitrixBleed, or CVE-2023-4966, is now an infamous security vulnerability affecting Citrix NetScaler that allows attackers to hijack user sessions by stealing session authentication tokens. Unfortunately, it has affected many NetScaler customers including Xfinity, which lost data for 36 million customers as a result of CitrixBleed. There is no way to protect against CitrixBleed by configuring the NetScaler WAF to detect and block it.
Read Post
kosli

The rising trend of Data Breaches and Critical Vulnerabilities in 2023

Dec 19, 2023 By Katerina Konstantinou In Kosli

As the year comes to an end, we are taking a look back on the major data breaches and vulnerabilities that disrupted the security of both small, and large and very important organizations around the world and across all industries. According to a recently published report: As this trend is on the rise, governmental organizations and companies of every size put more emphasis on the security of their systems and networks.

Read Post

Coffee Talk with SURGe: 12-DEC-2023 Kyivstar Cyberattack, Water Utilities Hacked, Log4j Exploited

Dec 13, 2023 By Splunk In Splunk
Grab a cup of coffee and join Mick Baccio, Katie Brown and Audra Streetman for another episode of Coffee Talk with SURGe. The team from Splunk will discuss the latest security news, including: Audra and Katie also competed in a charity challenge to share what they consider to be the largest cyber incident of 2023.
View Video
puppet

How Automation Can Support Threat Vulnerability Management + Reduce the Attack Surface

Dec 7, 2023 By Robin Tatam In Puppet
Threat vulnerability management, and managing your attack surface, are critical in the battle against cyberattacks. At some point before an successful attack, the internal process to manage threats and prevent access to sensitive data failed. How could they have done things differently? Were they just managing too much, too often, without the resources they needed?
Read Post
onpage

What is Vulnerability Management?

Nov 16, 2023 By Gilad Maayan In OnPage

Vulnerability management is a critical aspect of a cybersecurity strategy. It refers to the systematic and ongoing process of identifying, classifying, prioritizing, and addressing security vulnerabilities in a network environment. This proactive approach to network security aims to minimize the risk of exploitation by attackers. Vulnerability management is about staying one step ahead of potential threats.

Read Post

Understanding Zero-Day Vulnerabilities in Software Supply Chain

Nov 15, 2023 By Cloudsmith In Cloudsmith
A Node.js module with nearly two million downloads a week was compromised after the library was injected with malicious code programmed to steal bitcoins in wallet apps. Join us as we delve into a real-world zero-day supply chain attack. Understand the response that followed, and how attacks like this can be mitigated. Learn from David Gonzalez, Principal Engineer at Cloudsmith and Member of the Node.js security working group, as he walks us through the incident.
View Video
gremlin

Treat reliability risks like security vulnerabilities by scanning and testing for them

Nov 13, 2023 By Gavin Cahill In Gremlin

Finding, prioritizing, and mitigating security vulnerabilities is an essential part of running software. We’ve all recognized that vulnerabilities exist and that new ones are introduced on a regular basis, so we make sure that we check for and remediate them on a regular basis. Even if the code passed all the security checks before being deployed, you still perform regular security tests to make sure everything’s secure.

Read Post
NinjaOne

Zero-Day Vulnerabilities: How to Address and Mitigate Them

Nov 10, 2023 By Lauren Ballejos In NinjaOne

No internet-connected code is truly secure. Today’s development process is deeply iterative, and this ever-shifting landscape of code can sometimes expose critical vulnerabilities. When these flaws are discovered by attackers first, zero-day exploits threaten not just your own integrity – but that of business partners and team members across the organization.

Read Post
NinjaOne

What Is a Vulnerability Assessment & Why Is It Important?

Nov 9, 2023 By NinjaOne In NinjaOne

While cloud computing has ushered in a new era of connectivity and convenience, it has also exposed organizations to a myriad of vulnerabilities. Cyberattacks, data breaches, and security incidents have become all too common, leaving no room for complacency. The need for proactive cybersecurity measures has never been greater. It's in this context that vulnerability assessments play a vital role in safeguarding organizations against malicious threat actors.

Read Post
canonical

Zenbleed vulnerability fix for Ubuntu

Oct 3, 2023 By Lech Sandecki In Canonical
On 24 July 2023, security researchers from Google’s Information Security Engineering team disclosed a hardware vulnerability affecting AMD’s Zen 2 family of microprocessors. They dubbed this vulnerability “Zenbleed” (CVE-2023-20593), evoking memories of previous vulnerabilities like HeartBleed and hinting at its possible impact.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.