Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

tripwire

Survey: 76% of IT Pros Say It's Difficult to Maintain Security Configs in the Cloud

Aug 12, 2020 By Ray Lapena In Tripwire

Cloud misconfigurations are no laughing matter. In its “2020 Cloud Misconfigurations Report,” DivvyCloud revealed that 196 separate data breaches involving cloud misconfigurations had cost companies a combined total of approximately $5 trillion between January 1, 2018 and December 31, 2019. The problem is that those costs could be even higher; as reported by ZDNet, 99% of IaaS issues go unreported.

Read Post
tripwire

Google App Engine, Azure App Service Abused in Phishing Campaign

Aug 12, 2020 By David Bisson In Tripwire

A phishing campaign abused both the Google App Engine and the Azure App Service to steal victims’ Microsoft Outlook credentials. Netskope observed that the attack campaign started with a shortened link distributed by a phishing email. This link redirected a recipient of the email to a Google App Engine domain.

Read Post
splunk

Using Splunk to Detect Abuse of AWS Permanent and Temporary Credentials

Aug 12, 2020 By Rod Soto In Splunk

Amazon Web Services provides its users with the ability to create temporary credentials via the use of AWS Security Token Service (AWS STS). These temporary credentials work pretty much in the same manner like permanent credentials created from AWS IAM Service. There are however two differences.

Read Post
netskope

Netskope Joins with Crowdstrike, Okta, and Proofpoint to Secure Remote Work Any Time, Anywhere, at Scale

Aug 6, 2020 By Greg Mayfield In Netskope

Netskope, CrowdStrike, Okta, and Proofpoint are joining together to help better safeguard organizations by delivering an integrated, Zero Trust security strategy that is designed to protect today’s dynamic and remote working environments at scale.

Read Post
teleport

How OIDC Authentication Works

Aug 6, 2020 By Virag Mody In Teleport

Did you know that in the United States, the Social Security Number was never intended to become the defacto method for physical identification? On its surface, this may come as a shock given how ubiquitously SSNs are used for this exact reason, but looking beneath the surface, we find that SSNs are terrible forms of identification. Ignoring the security concerns of a nine digit numeric code, an SSN is not for universal identification.

Read Post

Webinar | Best Practices for Auditing K8s | Gravitational | Ev Kontsevoy | Andrew Lytvynov

Aug 5, 2020 By Teleport In Teleport
In this webinar, Ev and Andrew have a conversation about auditing kubernetes, what those logs might look like in a platform like Sumo Logic, and what added benefits one could receive from using a secure access tool like Teleport for audit logs and alerts.
View Video

Teleport 4.3 Demo | Privileged Access Management | SSH & Kubectl

Aug 4, 2020 By Teleport In Teleport
In this video, we show the basic capabilities of Gravitational Teleport, an open-source Linux server for setting up infrastructure access via SSH or Kubernetes. Gravitational Teleport is a gateway for managing access to clusters of Linux servers via SSH or the Kubernetes API. Download Teleport Community here and try it for your self Check out our GitHub repo here If you want to ask any questions reach out here.
View Video

Copyright © 2026 OpsMatters™. All rights reserved.