Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Love a good security tip? We've got you covered in this episode as we round up the very best security advice from our past expert guests. We also talk about the MailChimp data breach and the UK teens behind the infamous LAPSUS$ hacking group, in this week's Watchtower Weekly. Plus, we have some fun conjuring up password-related movie titles – coming soon to a theater near you… 🍿🎬 🏰

Razorthorn MD, James Rees, has been a PCI DSS QSA for much of his career - hear his initial thoughts on the latest update. Get in touch if you have any questions for him.

Our MPC-CMP algorithm at Fireblocks has brought a complete evolution in our clients’ security architecture. There are many benefits in utilizing MPC, such as the distribution of signing, the removal of a single point of failure from the system, and flexible M event signing structures. But MPC has its downsides, including a low transaction speed due to multiple rounds in the MPC signing process, and a lack of a truly air-gapped MPC solution.

In this short video, Tyler Warren, Deputy Information Security Officer at real estate leader Prologis, explains why companies must start with an accurate inventory of their APIs to ensure security. Hear how Prologis increased visibility into its APIs and created a more security-aware culture in the company.

65% of cyber attacks today happen due to the negligence of a third party. SolarWinds security breach is a good example of that. In this case, hackers used a method known as a supply chain attack to insert malicious code into their Orion System. From there, they managed to crack into the SolarWinds network and put malware into the environment. SolarWinds did a great job following up on this. They made significant improvements and are currently rated as a B by SecurityScorecard.

Introduced in eyeSight release 8.4, the "Switch API" provides the ability to automate changes to an enterprise switching infrastructure.

In this video, learn how to connect your Snyk SAST project with your StackHawk DAST apps for comprehensive and correlated results in a single view. Snyk helps software-driven businesses develop fast and stay secure. Continuously find and fix vulnerabilities for npm, Maven, NuGet, RubyGems, PyPI and more.

Falcon XDR: extend detection and response beyond the endpoint. Every insight. One response. crowdstrike.com/falconxdr

Falcon XDR: extend detection and response beyond the endpoint. Every insight. One response. crowdstrike.com/falconxdr