%term

Webinar - Secure your IaC, infastrucutre as code best practices for security

Mar 8, 2023 By GitGuardian In GitGuardian

The cloud revolution has taken the world, and programming languages, by storm! In 2022, HCL, the HashiCorp Configuration Language, driven by the popularity of Terraform and Infrastructure-as-Code practices, became the #1 fastest-growing language on GitHub! Who would’ve expected that ten years ago?!

View Video

GitGuardian

Read more about Webinar - Secure your IaC, infastrucutre as code best practices for security

Android apps in the PlayStore are leaking their credentials and secrets

Mar 8, 2023 By GitGuardian In GitGuardian

How many android applications on the play store are leaking their credentials and secrets! The answer comes from independent research conducted by Cybernews which shows nearly half of all applications on the Play Store are leaking secrets. Vincentas Baubonis, a security researcher from CyberNews joined GitGuardian on a Webinar to detail some research they conducted exploring how android applications are leaking secrets.

View Video

GitGuardian

Read more about Android apps in the PlayStore are leaking their credentials and secrets

Stranger Danger: Your JavaScript Attack Surface Just Got Bigger

Mar 8, 2023 By Snyk In Snyk

Building JavaScript applications today means that we take a step further from writing code. We use open-source dependencies, create a Dockerfile to deploy containers to the cloud, and orchestrate this infrastructure with Kubernetes. Welcome - you're a cloud native application developer! As developers, our responsibility has broadened, and more software means more software security concerns for us to address.

View Video

Snyk

Read more about Stranger Danger: Your JavaScript Attack Surface Just Got Bigger

Getting Rid of Shared Secrets: The Major Design Flaw of All CI Systems

Mar 8, 2023 By Noah Stride In Teleport

If you’re a developer, devops or security engineer whose continuous integration (CI) systems rely on shared secrets for access management, you probably know firsthand the security risks that shared secrets present.

Read Post

Teleport

Read more about Getting Rid of Shared Secrets: The Major Design Flaw of All CI Systems

Mend & AWS CodeCatalyst Integration

Mar 8, 2023 By Mend In Mend

Are you using AWS CodeCatalyst? Mend can integrate with your source control and quickly detect open source artifacts and their known vulnerabilities and licensing risks. Mend also provides all the information you need to fix these artifacts automatically.

View Video

Mend

Read more about Mend & AWS CodeCatalyst Integration

Visualizing RBAC for Improved Security Management and Outcomes

Mar 8, 2023 By Oshrat Nir In ARMO

RBAC management is crucial to securing a Kubernetes cluster and ensuring compliance with regulations and industry standards. ARMO Platform includes an RBAC visualizer allowing administrators to see which privileges are assigned to any given user. Role-based access control—commonly known as RBAC—is the practice of assigning access to an organization’s resources whereby the level of access privilege depends upon an individual’s role in the organization.

Read Post

ARMO

Read more about Visualizing RBAC for Improved Security Management and Outcomes

Snyk Workflows - Builds & Branching

Mar 7, 2023 By Snyk In Snyk

Snyk integrates with your IDEs, repos, workflows, and automation pipelines to add security expertise to your toolkit. The “menu” of options available to you is extensive, so we created this three-part series to get you started and running. What about when you need to compare different versions of code? This third session of the series covers the more advanced topic of builds and branching and more.

View Video

Snyk

Read more about Snyk Workflows - Builds & Branching

Advanced DevOps Security With Development Flexibility

Mar 7, 2023 By Paul Garden In JFrog

Announcing the general availability of JFrog Xray’s advanced security features in self-hosted subscriptions, organizations have the flexibility to manage and secure their software development pipelines in-house and in the cloud.

Read Post

JFrog

Read more about Advanced DevOps Security With Development Flexibility

What is Typosquatting?

Mar 7, 2023 By Bytesafe In Bytesafe

View Video

Bytesafe

Read more about What is Typosquatting?

Why the Wiz/SentinelOne Partnership Validates the Sysdig Approach

Mar 7, 2023 By Suresh Vasudevan In Sysdig

With today’s announcement of the Wiz/SentinelOne partnership and other recent launches, like Orca/ThreatOptix, we are seeing cloud security players publicly validate that they can no longer compete without a compelling runtime security solution. Agentless technology enabled young companies to solve the low-hanging fruit problem of periodic cloud security assessment.

Read Post

Sysdig

Read more about Why the Wiz/SentinelOne Partnership Validates the Sysdig Approach

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Webinar - Secure your IaC, infastrucutre as code best practices for security

Android apps in the PlayStore are leaking their credentials and secrets

Stranger Danger: Your JavaScript Attack Surface Just Got Bigger

Getting Rid of Shared Secrets: The Major Design Flaw of All CI Systems

Mend & AWS CodeCatalyst Integration

Visualizing RBAC for Improved Security Management and Outcomes

Snyk Workflows - Builds & Branching

Advanced DevOps Security With Development Flexibility

What is Typosquatting?

Why the Wiz/SentinelOne Partnership Validates the Sysdig Approach

Monthly Archive

Follow Us