Understanding metrics to measure SOC effectiveness

From securelist.com

The security operations center (SOC) plays a critical role in protecting an organization’s assets and reputation by identifying, analyzing, and responding to cyberthreats in a timely and effective manner. Additionally, SOCs also help to improve overall security posture by providing add-on services like vulnerability identification, inventory tracking, threat intelligence, threat hunting, log management, etc. With all these services running under the SOC umbrella, it pretty much bears the burden of making the organization resilient against cyberattacks, meaning it is essential for organizations to evaluate the effectiveness of a cybersecurity operations center. An effective and successful SOC unit should be able to find a way to justify and demonstrate the value of their existence to stakeholders.

Read more…

Biggest data theft in world history takes place in India

From cybersecurity-insiders.com

For the first time in the Indian history and probably in the world, the police officials of Hyderabad City of Telangana, India have arrested a gang for committing data thefts and selling data of appx 16.8 crore citizens including 1.2 crore belonging to WhatsApp, 17 lakhs from Facebook, 2.55 lakhs belonging to armed forces, 15 lakh PAN cards and some belonging to the Aadhaar, similar to that of social security number issued by the government of United States.

The data bust was revealed on March 23rd, 2023, after through verification conducted by the Chief of Cyberabad Police Commissioner, Stephen Ravindra.

Read more…

MITRE’s System of Trust risk model manager improves supply chain resiliency

From helpnetsecurity.com

MITRE launched its System of Trust risk model manager and established a community engagement group of 30 members.

Expanding from its free and open platform, System of Trust now delivers a collaborative community to identify and mitigate threats to supply chains—before they happen. Leveraging the expertise of researchers and organizations, the community will further develop the framework’s body of knowledge and enhance supply chain security.

Read more…

Bitcoin-cloud mining scam

From kaspersky.com

Despite some instability over the past six months, the cryptocurrency market is still seen by many as a get-rich-quick scheme. Accordingly, the stream of scammers feeding off this topic won’t be running dry any time soon. To lure victims into their traps, they continue to come up with new ploys, each more innovative than the last. Today we look at a novel scheme that invites victims to withdraw funds supposedly mined by their accounts on some kind of “automated cloud-mining platform.”

Read more…

Errors logged as ‘nut loose on the keyboard’ were – ahem – not a hardware problem

From theregister.com

Welcome once again, dear reader, to On-Call, The Register‘s Friday feature in which we share readers’ tales of being asked to address avoidable annoyances.

This week, meet a reader we’ll Regomize as “Tom” who once worked as the sysadmin supporting a large software development team.

“We had an in-house developed problem ticket system written in Perl 4,” Tom told On-Call. “It worked, we were familiar with it and we liked it.”

But Tom’s boss “really wanted a commercial product.”

Read more…

Critical Vulnerability Discovered in WooCommerce Payments

From blog.sucuri.net

On March 22nd, 2023 a critical vulnerability was discovered within the WooCommerce Payments plugin – an extremely popular eCommerce payment plugin for WordPress with over half a million active installations. Thankfully the vulnerability was discovered by white hat security researcher Michael Mazzolini and responsibly disclosed through HackerOne, giving websites time to install the patched version 5.6.2 before full details of the exploit are released on April 6th.

Read more…