How to Achieve DevSecOps Success: Use Cases for the Financial Services Industry
Maharshi Patel and Jean-Pierre Cyrenne share financial services use cases and what best-in-class organizations are doing to ensure DevSecOps success.
Security | Threat Detection | Cyberattacks | DevSecOps | Compliance
The Latest Cybersecurity News & Insights From Around The World
Navigating Chaos: JFrog Security Essentials and Advanced Security
We examine fundamental shifts and changes to software development approaches and how we secure developers, the code they write, and the products they build. Learn how your development teams can prioritize critical vulnerable exposure (CVE) remediation, maintain granular, centralized, and complete control of the development process, and maintain a single source of truth from code to device.
How Software Supply Chain Security Regulation Will Develop, and What Will It Look Like?
The escalation of international legislative interest in regulating the software supply chain has led to an increasing likelihood that tools such as software bills of materials (SBOMs) and AppSec solutions will become essential for companies doing business in the public sector or in highly regulated industries. However, the process of building and enforcing effective regulations presents challenges as well.
How we built a secure RDP client
Today’s remote desktop protocol (RDP) clients don’t do enough to promote a strong security posture. They default to weak password-based authentication, leaving Windows infrastructure vulnerable to brute force attacks, and assume a direct connection to a well-known port is available. At Teleport we’re a bit bonkers about always trying to build the most secure solution, so we set out to do something different.
Why Legal Regulation Shifts Responsibility for Software Supply Chain Security to Vendors
In the face of increasingly impactful malicious attacks, governments of leading economies have turned their attention to the software supply chain security. Regulations like the EU’s Digital Operational Resilience Act (DORA) for financial institutions and the Cyber Resilience Act (CRA) for software and hardware providers Australia’s 2023-2030 cybersecurity strategy, and the U.S.
Are You Protected from the 12 Most Exploited Vulnerabilities?
One of the most vital things to get right in application security is dependency management, and to achieve this, your suite of AppSec tools must be up to date. This means that your vulnerability scanning, detection, and remediation capabilities must be able to identify and address the newest and most exploited vulnerabilities. Do you know what these vulnerabilities are? Have you got them covered? With the help of some of the world’s leading cybersecurity authorities, you can be.
Open Source CyberSecurity Tools for Hardening
Open-source cybersecurity tools offer a prime solution for independent security experts, emerging businesses, and even medium to large enterprises aiming to tailor their security framework. These tools serve as a foundational platform for fostering security advancements, integrating proprietary software code and security automation scripts.
Tips and Tools for Open Source Compliance
You don’t need us to tell you that open source software is becoming a very significant percentage of commercial software codebases. Open source components are free, stable, and enable you to focus your resources on the innovative and differentiated aspects of your work. But as the use of open source components increases, compliance with open source licenses has become a complex project of growing importance. So how can you stay on top of compliance and what tools are out there to help?
From Hardware to Cloud: Modernizing IT Infrastructure for Business Success
The IT infrastructure has evolved over the years. The traditional hardware-based system is slowly giving way to cloud platforms that are more efficient, scalable, and flexible than their predecessors. Organizations are moving away from traditional models of managing IT infrastructure and embracing modern approaches such as hybrid cloud deployments, containerization, microservices architectures, and more.
How we improved SSH connection times by up to 40%
At Teleport we provide secure access to our customers’ infrastructure adding passwordless SSO, session recording and audit for every connection. Every day our customers login into their clusters and connect to their infrastructure. We weren’t happy with how long it took ssh to establish connections to target hosts when going through Teleport proxy.