%term

Risk Mitigation Strategies for Tcp/IP Vulnerabilities in OT

Sep 4, 2021 By JFrog In JFrog

JFrog in collaboration with Forescout Research Labs recently released the fourth study from Project Memoria - the industry’s most comprehensive study of TCP/IP vulnerabilities. INFRA:HALT covers 14 vulnerabilities affecting the popular closed source TCP/IP stack NicheStack. These vulnerabilities can cause Denial of Service or Remote Code Execution, allowing attackers to take targeted OT and ICS devices offline or take control of them.

View Video

JFrog

Read more about Risk Mitigation Strategies for Tcp/IP Vulnerabilities in OT

Securing Your Package Manager's Lockfiles

Sep 2, 2021 By Maciej Mensfeld In Mend

Considering our reliance on open source and third party components, it’s nearly impossible to estimate how many open source libraries we’re using, especially with dependency management tools that pull in third party dependencies automatically. Adding to the challenge of keeping track of the open source components that make up our codebase, is the tangled web of transitive dependencies.

Read Post

Mend

Read more about Securing Your Package Manager's Lockfiles

Snyk Code support for PHP vulnerability scanning enters beta

Sep 2, 2021 By DeveloperSteve In Snyk

Snyk Code support for PHP vulnerability scanning is now available in beta. Now security issues in PHP code can be identified quickly and easily. To get started, log into Snyk or sign up for a free account. Once logged in on the dashboard, click on the Add Project button in the top right corner and connect to a repository you want to scan.

Read Post

Snyk

Read more about Snyk Code support for PHP vulnerability scanning enters beta

7 steps to improve developer security

Sep 2, 2021 By Sam Hepburn In Snyk

Empathy — that ability to understand what others are feeling — might be the secret ingredient when it comes to successfully shifting security into the developer world. Snyk co-founder and president Guy Podjarny hosts The Secure Developer podcast, and in interview after interview, guests have repeatedly spoken about how empathy, understanding, and a bias toward action are the biggest components of a successful developer-first security culture.

Read Post

Snyk

Read more about 7 steps to improve developer security

Secure Access to MongoDB Databases with Teleport Database Access

Sep 2, 2021 By Teleport In Teleport

An on-demand webinar covering Teleport Database Access.

View Video

Teleport

Read more about Secure Access to MongoDB Databases with Teleport Database Access

Enhanced SSH Session Recording with BPF

Sep 2, 2021 By Teleport In Teleport

Teleport Enhanced Session Recording mitigates all three concerns by providing advanced security, greater logging capabilities, and better correlates a user with their activities.

View Video

Teleport

Read more about Enhanced SSH Session Recording with BPF

Restricted Session for SSH

Sep 2, 2021 By Teleport In Teleport

https://goteleport.com/docs/server-access/guides/restricted-session/

View Video

Teleport

Read more about Restricted Session for SSH

Why Secure Access to Cloud Infrastructure is Painful

Sep 2, 2021 By Ev Kontsevoy In Teleport

Can you enumerate every single network socket which can be used to hack into your cloud environment and steal your data? When counting, are you including the laptops of people who already authenticated and have access? The purpose of opening with this question is not to instill fear. Trying to answer it probably leads to “it’s complicated” and the complexity of access is what this article will cover. Complexity is our collective enemy in the computing industry.

Read Post

Teleport

Read more about Why Secure Access to Cloud Infrastructure is Painful

SnykLIVE: CISO Panel on Shift Left

Aug 31, 2021 By Snyk In Snyk

Snyk helps software-driven businesses develop fast and stay secure. Continuously find and fix vulnerabilities for npm, Maven, NuGet, RubyGems, PyPI and more.

View Video

Snyk

Read more about SnykLIVE: CISO Panel on Shift Left

Introduction to HSM - Hardware Security Modules

Aug 31, 2021 By Russell Jones In Teleport

HSM stands for hardware security module. HSMs are hardware devices. They can be quite small and plugged into the main board of a computer, or they sit side by side in a server rack. They store sensitive data such as private keys. HSMs do not allow you to read that sensitive data back; instead, they expose only cryptographic operations like signing of certificates or encrypting data. This provides stronger protections for storing private keys compared to disks or databases.

Read Post

Teleport

Read more about Introduction to HSM - Hardware Security Modules

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Risk Mitigation Strategies for Tcp/IP Vulnerabilities in OT

Securing Your Package Manager's Lockfiles

Snyk Code support for PHP vulnerability scanning enters beta

7 steps to improve developer security

Secure Access to MongoDB Databases with Teleport Database Access

Enhanced SSH Session Recording with BPF

Restricted Session for SSH

Why Secure Access to Cloud Infrastructure is Painful

SnykLIVE: CISO Panel on Shift Left

Introduction to HSM - Hardware Security Modules

Monthly Archive

Follow Us