Here we go … it’s March:
- ServiceNow for managing vulnerabilities via Contrast Security integration. Contrast Security integrated its application security discovery and visibility capabilities with ServiceNow’s Application Vulnerability Response app, for a richer and more comprehensive view. The integration is bidirectional. Application security and security operations teams using ServiceNow AVR are looking to enhance their application-layer visibility to further strengthen vulnerability risk prioritization. By staying within the ServiceNow AI Platform and adding richer context, teams can make faster, more confident decisions. Contrast Security
- 67% of all incidents investigated by Sophos IR and MDR teams were identity-related. Sophos released a new report, with the key finding being the prevalence of identity as the root attack vector. The report shows a continued rise in attacks rooted in identity compromise, including stolen credentials, brute-force activity, and phishing. While exploited vulnerabilities remain a factor, attackers increasingly rely on valid accounts to gain initial access, allowing them to bypass traditional perimeter defenses. There was also a lack of MFA in 59% of cases, facilitating the abuse of stolen and compromised credentials to penetrate an organization. Sophos
- Detectify adds Protocol Discovery for greater insight to risks behind open ports. Detectify expanded its Surface Monitoring capabilities to discover and identify specific services running behind open ports – so that obfuscation by using non-standard ports isn’t enough to reduce breach and vulnerability risks. e.g., our data shows that SSH is found on non-standard ports just as often as on port 22 (50.7% on 22/tcp, with the remaining 49.3% on other ports). We’re also identifying high-risk exposures like Redis and MongoDB that should not be public-facing. Detectify