Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Want an additional layer of security for your software or app? YubiKey is a hardware that offers safe authentication and encryption for creating and authenticating private keys. Private keys generated by YubiKey devices may be secured such that they never leave the device, making them impenetrable to hackers. Due to New CA/B, If you are using an existing token such as YubiKey (FIPS Series), then here is the quick and easy guide that will help you to generate private key, CSR and Attestation Certificate in YubiKey using YubiKey Manage.

Learn how to sign windows executables using YubiKey! Whenever you are individual software developer or a organization needs to publish software, code signing gets performed. It helps to build a trustworthy relationship with end-users, as signed software eliminates Unknown Publisher Warnings. According to new CA/Browser policies, every certificate owner needs to store the private key in a hardware token. And the token must align with FIPS standards. Otherwise, the certificate will not get issued.

Secrets sprawl is showing no signs of a slowdown. Last month, we revealed 1 in 10 code authors exposed a secret on GitHub in 2022, collectively leaking 10 million secrets (you read that right, T-E-N) on the platform. This time, we're stepping beyond the data. We went on a (virtual) field trip and asked 500+ CISOs and engineering leaders how they currently deal with hardcoded secrets, how they intend to solve their organization's secrets management puzzle, their top priorities and investment areas in AppSec and Dev tooling, and many other questions!

Video Series: One Identity - Identity Manager - Update 9.x Video 3: Features and Enhancements.

This week on the podcast, we cover Microsoft's latest refresh of naming conventions for advanced persistent threat (APT) actors worldwide, as well as an update on two specific threat actors and their latest tactics. We also cover a ransomware event targeting a biotechnology company with an interesting twist. The 443 Security Simplified is a weekly podcast that gets inside the minds of leading white-hat hackers and security researchers, covering the latest cybersecurity headlines and trends.

This video talks about how you can seamlessly schedule vulnerability scans using Astra.

In this informative video, we share our expert advice on how organizations can effectively safeguard themselves from the ever-present threat of cybercrime in today's world. By following these top tips, you can enhance your organization's cybersecurity posture and protect your valuable assets.

We delve into the hypothetical scenario of pitting a defensive cybersecurity AI against a malicious cyber criminal's AI in an attack pattern. Imagine a battle of wits between two advanced AI systems, each with its own objectives and strategies.

Help Safeguard Your SAP Environments with Splunk Bring security-relevant SAP data into the fold of Splunk security analytics and operations workflows to accurately detect and rapidly respond to threats impacting your SAP estate.

The cool kids are the cloud kids (...cheesy, we know, but roll with it). We have two cool cloud experts: Splunker Tom Stoner and Clarify360's Jo Peterson here to share their thoughts - check it out.