Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

This week on the podcast, we cover CISA's newly updated whitepaper on guidance for both software manufacturers and customers on the principals of secure-by-design and secure-by-default. Before that, we cover the Cisco IOS XE vulnerability that is under active exploitation in the wild, give an update on the EPA's efforts to regulate cybersecurity practices in water districts, and then discuss research into the latest "bullet proof hosting" options for malicious web content.

Welcome to our latest video, where we explore the world of Network Penetration Testing Services. In this video, we dive into what Network Penetration Testing is, common vulnerabilities you must watch out for, and its multiple benefits. Discover how Cyphere, your trusted cybersecurity partner, can assist you in fortifying your network's security through expert Network Penetration Testing services.

Join us to discover how adopting IDaaS (OneLogin) within your IAM deployment can supercharge your security posture, processes and user experience.

To have a successful migration from VPN to ZTNA, you to identify each app and network resource remote users need to access. By leveraging enterprise app discovery within Lookout Secure Private Access, you gain the insights into what users need to be successful.

The question of the week from a customer was: “How do we use Tines with our Infrastructure-as-Code methodology?” Today we’re looking at how to automate processes around Terraform Cloud, like documentation, opening tickets, and getting approval for changes in the cost of the infrastructure. Use this workflow to save time, maintain consistent records for audits, and manage incremental infrastructure costs.

Learn more at: https://www.datadoghq.com/product/cloud-siem/

In this video we're looking at how to harden Docker containers by removing some of the default Linux capabilities granted to them. To learn more, read our blog on Datadog’s Security Labs site.

We’ll look at one of LimaCharlie’s newest features: Binary Library, or “BinLib”, a private repository of binaries observed in an organization. BinLib opens up new opportunities for detecting malicious files within an organization. Historical searching and YARA scanning allow you to take your binary detection to the next level, as we will observe and discuss in this session.

In this intriguing discussion, we delve into the complex world of insurance companies and their strategies for handling cyber threats, particularly when it comes to determining acts of war and espionage. We explore the blurry boundaries and challenges of insuring against these distinct yet interconnected risks in the ever-evolving cyber landscape. Join us for a candid conversation where we attempt to unravel these intricate dilemmas, acknowledging the difficulties in this domain that often leave us with more questions than answers.