%term

Snyk report shows Java ecosystem is more relevant than ever

Jul 30, 2021 By Snyk In Snyk

After more than 25 years, Java is still one of the most popular open source programming languages in the world. To provide more insights into how Java and the JVM ecosystem are used amongst the developer community, Snyk has launched the Java ecosystem report 2021.

Read Post

Snyk

Read more about Snyk report shows Java ecosystem is more relevant than ever

Bring Xray Out of the Box with Dependency and Binary Scanning

Jul 30, 2021 By Paul Garden In JFrog

Shifting left security means you, the developer, catching and fixing vulnerabilities and license violations early in the SDLC. That’s why Xray scans binaries pushed to Artifactory by your builds, and alerts you when there are issues with your dependencies. But catching them earlier, even before checking in code, can be important for developers shifting left.

Read Post

JFrog

Read more about Bring Xray Out of the Box with Dependency and Binary Scanning

Snyk Code adds security scanning for C# and .NET

Jul 29, 2021 By Frank Fischer In Snyk

As a quick note, I have a personal history with .NET, including time working at Microsoft as a .NET evangelist. And I’ve briefly met Anders Jejlsberg, the designer of C# and Typescript, so this blog is a bit personal for me. We are happy to announce that Snyk Code scans for security vulnerabilities and provides remediation suggestions for yet another language: C#. This adds a major language to our portfolio which includes support for Java, JavaScript, TypeScript, and Python.

Read Post

Snyk

Read more about Snyk Code adds security scanning for C# and .NET

How to Bridge the Cybersecurity Skills Gap

Jul 29, 2021 By Patricia Johnson In Mend

Application security remains a top concern for organizations, making the need for skilled cybersecurity professionals as urgent as ever. Nearly half of security practitioners in high-performing enterprises who participated in a recent Ponemon Institute research report about reducing enterprise security risks stated that hacks to insecure applications are their organization’s biggest concern.

Read Post

Mend

Read more about How to Bridge the Cybersecurity Skills Gap

The Simplest way to Secure your Java Maven Project

Jul 29, 2021 By Snyk In Snyk

Can I scan for security vulnerabilities using Maven? How can I integrate security scanning in my Maven build? How to monitor for security vulnerabilities with every Java build? Scanning the dependencies for known security vulnerabilities in your project is essential. The ideal time to start checking your dependencies is the very moment you import them! To that end, we created the Snyk Maven plugin so you can now scan your application for security vulnerabilities in third-party libraries as part of your build cycle—putting security expertise in the hands of developers.

View Video

Snyk

Read more about The Simplest way to Secure your Java Maven Project

Setting up PAM Authentication with Teleport

Jul 29, 2021 By Teleport In Teleport

This video is a short overview of https://goteleport.com/docs/ver/7.0/server-access/guides/ssh-pam/

View Video

Teleport

Read more about Setting up PAM Authentication with Teleport

Connecting IoT devices to Teleport

Jul 29, 2021 By Teleport In Teleport

https://goteleport.com/docs/admin-guide/#adding-a-node-located-behind-nat

View Video

Teleport

Read more about Connecting IoT devices to Teleport

Securing Access to Your MongoDB Database

Jul 29, 2021 By Roman Tkachenko In Teleport

MongoDB is one of the most popular open-source databases. Unfortunately, this also means ubiquity of misconfigured and unsecured MongoDB deployments out in the wild. Just in recent years, we’ve seen several hacks involving thousands of MongoDB databases left exposed online without any protection, making them ripe for the hacker’s picking. It doesn’t have to be this way, though.

Read Post

Teleport

Read more about Securing Access to Your MongoDB Database

JFrog detects malicious PyPI packages stealing credit cards and injecting code

Jul 29, 2021 By Andrey Polkovnichenko, Omer Kaspi and Shachar Menashe In JFrog

Software package repositories are becoming a popular target for supply chain attacks. Recently, there has been news about malware attacks on popular repositories like npm, PyPI, and RubyGems. Developers are blindly trusting repositories and installing packages from these sources, assuming they are secure.

Read Post

JFrog

Read more about JFrog detects malicious PyPI packages stealing credit cards and injecting code

Announcing Social Trends: Use social media for security intelligence

Jul 28, 2021 By Daniel Berman In Snyk

We are excited to announce the availability of Social Trends, adding social media intelligence (SOCMINT) to Snyk’s vulnerability data to help development and security teams prioritize vulnerabilities more effectively. Given the size of vulnerability backlogs facing organizations today, finding and fixing security vulnerabilities in a timely manner is a monumental task. There simply are not enough hands on deck to triage and tackle all the vulnerabilities on the list.

Read Post

Snyk

Read more about Announcing Social Trends: Use social media for security intelligence

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Snyk report shows Java ecosystem is more relevant than ever

Bring Xray Out of the Box with Dependency and Binary Scanning

Snyk Code adds security scanning for C# and .NET

How to Bridge the Cybersecurity Skills Gap

The Simplest way to Secure your Java Maven Project

Setting up PAM Authentication with Teleport

Connecting IoT devices to Teleport

Securing Access to Your MongoDB Database

JFrog detects malicious PyPI packages stealing credit cards and injecting code

Announcing Social Trends: Use social media for security intelligence

Monthly Archive

Follow Us