We talk about supply chain risk, GDPR, Data Audits, how companies can make sure their processes for transferring data to 3rd parties remain on track. Jacob highlights the interplay between DevOps and security. A very interesting discussion indeed. For full disclosure - Armature Systems is a partner of Riscosity, and helps clients with purchasing, deploying, and operationalizing Riscosity's platform..

Application Architecture Summit, January 2021 How to protect your CI/CD pipeline so it doesn’t turn into a vulnerability superspreader. CI/CD pipelines bring so much application security good to the development process. They help increase test coverage and reduce human error by automating away toil. But without proper controls, an over-privileged and insufficiently monitored CI/CD pipeline can turn into a vulnerability superspreader. This talk will show you how to manage identity-based access so your CI/CD pipeline stays secure using the open-source solution Teleport and Github Actions.

Learn more about the powerful control and visibility into the Netskope Security Cloud, as well as the applications and data that Netskope customers are accessing, made possible with Netskope Digital Experience Management (DEM).

Sending data to Devo - Uploading local data

Directory Traversal might not be considered as a high-impact vulnerability but it can be a stepping stone to information leak and shell upload vulnerability. The lack of directory traversal security can allow an attacker to manipulate the file path to gain unauthorized access to different files in the directory. You need penetration testing to detect the directory traversal vulnerability. This video is a short explanation of how the file traversal vulnerability can be exploited, and how you can avoid it.

Ninety years old, a widow, and well into enjoying life with her family and friends, Phyllis Weisberg never thought she'd be a victim of a tech support scam. Phyllis thought she was receiving help, but instead was defrauded of $20,000 when cybercriminals withdrew the money from her bank account.

What would you do, if you could predict a data breach? In this webinar recording, Penguin, Sainsbury’s, Tesco, and others will show how they use SecurityScorecard to predict and prevent data breaches. They will explain how they engage with their subsidiaries and suppliers, showing you how hundreds of breaches have been predicted in 2021 and what that means for 2022.

Cloud native development has changed the way developers both build and secure applications. Snyk’s cloud native application security platform is designed to work like a developer tool – making it not only easy to find issues, but to fix them quickly.

Webinar recording on "Threat Landscape for the Philippines Financial Industry" topic, hosted by Cyberint for the Bankers Association of the Philippines.

Dive in to the Pwnkit privilege escalation vulnerability with Kyle and Brian!