top of page

CYBERSIFT Change.log 01.24




As we embarked on the journey of a new year, our dedicated team began by extending assistance to multiple clients, focusing on bolstering their data security infrastructure.

This collaborative effort ensures that our clients are equipped with robust measures to safeguard their valuable data against an ever-evolving landscape of cyber threats. The team has also been working on a couple of updates:

SIEM Updates:


  • Introduced the "streaming event dynamic alerts" engine, a cutting-edge feature that revolutionizes the way our SIEM system detects and responds to security incidents. This engine provides real-time alerts, significantly reducing response times and enhancing the overall threat detection capabilities of our SIEM solution.

  • Implemented crucial improvements and bug fixes to NiFi syslog liveliness checks. These enhancements ensure the continuous and reliable flow of data, maintaining the integrity of our SIEM system's data processing capabilities.

  • Expanded the scope of SIEM by adding support for parsing AWS CloudTrail logs. This inclusion allows our clients to comprehensively monitor and analyze cloud-based activities within their security framework.


TUTELA Updates:


  • Enhanced the capabilities of our network scanner by implementing a batched approach to additional checks. This strategic enhancement prevents paused output and timeouts during scanning processes, resulting in a more seamless and efficient operation.

  • Improved the Apache HTTPD module enumerator to further refine the enumeration of modules. This upgrade enhances the precision and effectiveness of the enumeration process, contributing to an overall more reliable network security posture.

DNS Protect Updates:


  • Launched the "self-service portal" for CS-DNS users, a user-friendly platform designed to empower users with greater control over their DNS configurations. This portal streamlines the management process, providing users with enhanced flexibility and autonomy in configuring and customizing their DNS settings.

 

& so ... in January 2024, these were the top Cybersecurity news from around the globe:

WordPress Plugin Vulnerability:
  • Exploited by cybercriminals for unauthorized access to 100,000+ websites.

  • Emphasizes the need for regular updates and patching.

LockBit Ransomware Targets Healthcare:
  • Major attack on healthcare providers, demanding substantial ransoms.

  • Highlights vulnerability of healthcare sector and potential impact.

Defacement Campaign on Israeli Websites:
  • Cyberattacks deface websites of Israeli organizations.

  • Illustrates cyberattacks as a form of political activism.

Vulnerabilities in Industrial Control Systems:
  • Trend Micro uncovers vulnerabilities in Siemens, Schneider Electric, and Rockwell Automation systems.

  • Potential to disrupt critical infrastructure.

Phishing Attacks Targeting Job Seekers:
  • Significant increase observed, using fake job postings.

  • Warns job seekers to be cautious online.

Call for Cybersecurity Education:
  • Leaders urge governments to prioritize cybersecurity education.

  • Emphasis on awareness and training.

New Cybersecurity Framework for Supply Chains:
  • NIST releases framework addressing supply chain risks.

  • Provides guidance on risk assessment and mitigation.

Record Funding for Cybersecurity Startups:
  • Startups raise over $70 billion in 2023.

  • Indicates significant industry investment and growth.


 

Did you check out our New Look?


We're thrilled to share a momentous milestone with you as CyberSift undertakes a transformative journey. 🎉 On January 10th, we celebrated the launch of our re-imagined brand after six years of continuous growth.

Our refreshed brand reflects our commitment to innovation and adaptability in the ever-evolving landscape of cybersecurity. 🚀




 

We will also be present at ICE London between the 6-8 of February.

Let's Meet!




Comments


bottom of page