%term

Simplifying FedRAMP Compliance with Teleport

Jun 27, 2024 By Teleport In Teleport

FedRAMP compliance is notoriously challenging, but it doesn't have to derail your DevOps flow or tech stack. Discover how Teleport’s robust infrastructure access and security platform addresses some of the toughest questions and hurdles in the FedRAMP process, empowering engineering, compliance, and security leaders to implement and enforce security controls seamlessly.

View Video

Teleport

Read more about Simplifying FedRAMP Compliance with Teleport

CDK Global Cyber Incident Shows the Need for Better Supply Chain Security

Jun 27, 2024 By Trustwave In Trustwave

CDK Global, a company that provides software for thousands of auto dealers, was hit by back-to-back cyberattacks on June 19. These attacks led to an outage that continued to impact many of their sales operations on Friday, according to the Associated Press. CDK told multiple news outlets that it is "actively investigating a cyber incident," and the company shut down all of its systems out of an abundance of caution.

Read Post

Trustwave

Read more about CDK Global Cyber Incident Shows the Need for Better Supply Chain Security

Polyfill Supply Chain Attack: What It Is and How to Know If You're Affected

Jun 27, 2024 By Michael Kucek In Veracode

Here’s what you need to know about the progression of the Polyfill supply chain attack and how to respond.

Read Post

Veracode

Read more about Polyfill Supply Chain Attack: What It Is and How to Know If You're Affected

Building a Human-Centric Vulnerability Management Program

Jun 27, 2024 By Nucleus In Nucleus

Steve Carter, CEO and co-founder of Nucleus Security, and Dr. Nikki Robinson, Security Architect at IBM, discuss the importance of the people side of vulnerability management. They explore challenges such as context switching, long mean time to remediation, and the impact of communication on vulnerability management programs. The conversation includes practical advice on incorporating human factors into cybersecurity practices, how to improve communication and collaboration among teams, and why understanding human factors is crucial for effective vulnerability management.

View Video

Nucleus

Read more about Building a Human-Centric Vulnerability Management Program

MSASE Dashboard Overview

Jun 27, 2024 By Cato Networks In Cato Networks

Managing multiple customers from a single console is good, but being able to get all of the analytics and usage data all in a single dashboard is amazing. Cato’s MSASE Partner Platform Dashboard provides just that...a single pane of glass to see all of your customer account analytics, with actionable data and deep-linking to the customer tenants.

View Video

Cato Networks

Read more about MSASE Dashboard Overview

When Prompts Go Rogue: Analyzing a Prompt Injection Code Execution in Vanna.AI

Jun 27, 2024 By Natan Nehorai In JFrog

In the rapidly evolving fields of large language models (LLMs) and machine learning, new frameworks and applications emerge daily, pushing the boundaries of these technologies. While exploring libraries and frameworks that leverage LLMs for user-facing applications, we came across the Vanna.AI library – which offers a text-to-SQL interface for users – where we discovered CVE-2024-5565, a remote code execution vulnerability via prompt injection techniques.

Read Post

JFrog

Read more about When Prompts Go Rogue: Analyzing a Prompt Injection Code Execution in Vanna.AI

Data Blizzard Hits LA Schools: Students data stolen in Snowflake Hack

Jun 27, 2024 By Narendra Sahoo In VISTA InfoSec

In a recent development that has raised concerns across the education sector, Los Angeles Unified School District (LAUSD) has confirmed a significant data breach involving student information. The breach, linked to a hack of the district’s Snowflake account, has exposed sensitive data pertaining to students and employees enrolled in the sprawling district. Snowflake is a cloud database platform used by companies worldwide to store their data.

Read Post

VISTA InfoSec

Read more about Data Blizzard Hits LA Schools: Students data stolen in Snowflake Hack

Seeing the Unseen: Preventing Breaches by Spotting Malicious Browser Extensions

Jun 27, 2024 By Bei Wang - Hari Holla - Keyauri Kendrick - Kamil Imtiaz In CrowdStrike

As workforce productivity increasingly depends on web-based applications, browsers have become essential gateways to the “connectivity economy.” According to recent data, 93% of desktop internet traffic in 2023 traversed through four popular web browsers.

Read Post

CrowdStrike

Read more about Seeing the Unseen: Preventing Breaches by Spotting Malicious Browser Extensions

Francis Odum Talks to Torq about the Modern SOC

Jun 27, 2024 By Torq In Torq

The future of SOC automation is dynamic and rapidly evolving, promising to revolutionize how security operations centers (SOCs) tackle their most pressing challenges. As cybersecurity threats grow in volume and sophistication, SOC teams are increasingly overwhelmed by alert fatigue, false positives, and a critical shortage of skilled professionals.

View Video

Torq

Read more about Francis Odum Talks to Torq about the Modern SOC

How to Set Up Real-Time Data Replication for VMware VMs with NAKIVO Backup & Replication

Jun 27, 2024 By NAKIVO In NAKIVO

The Real-Time Data Replication for VMware functionality in NAKIVO Backup & Replication allows you to create real-time replicas of VMware VMs, continuously updated with source VM changes. Follow the steps in this video to learn how to deploy a target Transporter, install the I/O Filter and Journal Service, and create your first real-time replication for VMware vSphere with NAKIVO Backup & Replication.

View Video