Passwords are everywhere. Sometimes they are obvious — hardcoded in the code or laying flat in the file, but other times they take the form of API keys, tokens, cookies, or even second factors. Devs pass them in environment variables, vaults mount them on disk, teams share them over links, and copy them to CI/CD systems and code linters. Eventually, someone leaks, intercepts, or steals them. Because they pose a security risk, there is no other way to say it: passwords in our infrastructure have to go.

Physical security breaches by social engineers can be catastrophic for your organization's data. Join Special Agent Cipher to learn about the types of social engineering tactics used by bad actors, along with strategies to keep your organization out of harm's way.

In this episode of This Old Hack, a bad actor writes in for help on how to improve their phishing game after not being able to get through filters anymore. Luckily for them, the Old Hack has some answers. Learn about the latest tactics hackers are using to successfully create convincing looking phishing emails.

Learn about Identity Framework configuration in this demo so that users and devices with a common identity can easily interact within WatchGuard products.

Welcome to This Week in VulnDB, Each episode we will look through some of the newer vulnerabilities in the Snyk vulnerability database, looking at emerging trends in attack vectors appearing in programming languages, platforms and ecosystems.

In this episode of Spotlight on Technology we’re joined by Marie Hargraves, Cyber Workforce Advisor at Immersive Labs, to discuss crisis simulation and incident response testing. What would you do if your organisation was the subject of a cyber attack? Having an incident response procedure is critical, but even if you have one, how can you be sure it will work? How can the process be refined? Marie talks to us about the challenges facing businesses when it comes to incident response, and how these challenges can be overcome to ensure there is a robust plan in place if the worst should happen.

How DevOps and Platform Teams can focus on Innovation and Optimization?

In this second of two episodes of AppSec Decoded, recorded live at RSA 2022 in San Francisco, Tim Mackey, principal security strategist within the Synopsys Cybersecurity Research Center, and Taylor Armerding, security advocate at Synopsys, continue their conversation on how the guidance from NIST can help any organization.

Grab a cup of coffee and join Ryan Kovar, Mick Baccio, and Audra Streetman for another episode of Coffee Talk with SURGe. The team from Splunk will discuss the latest security news including: Mick and Ryan competed in a 60 second charity challenge to explain why they think password managers are still your best option for password security. The team also discussed data privacy after the FTC announced it is suing a data broker for selling geolocation data. Meanwhile, the FCC is launching an investigation into mobile carriers' geolocation data practices.

Visibility into your business applications is critical for delivering on business outcomes quickly. However, it must be accomplished while keeping your network security intact. Taking an application-centric approach can guarantee this.