Securing the Future - Asia Pacific Cybersecurity Readiness Survey
Discover the latest data on cybersecurity preparedness in Asia Pacific. We reveal how organizations are coping with the rising volumes of cybersecurity incidents.
Product Security Plans: What They Are and Why They Matter
A product is only as secure as its weakest link. That is why many talented security engineers and researchers recommend embedding security as early in the software development life cycle (SDLC) as possible, even from the very first line of code. Or better yet, even before the very first line of code, during the threat modeling and architecture phase. Smart people have been saying this for a very long time. So, why does product security still remain difficult?
Finding Risk: Introducing Remediation Operations
The security space has evolved in complexity and scale, especially since 2020’s forced digital transformation hit virtually every industry. Day to day tasks for IT and security teams extend beyond the scope of people and their devices.
Barracuda's Adam Khan on AI-driven XDR and plugging the security skills gap
In this week’s episode of The Future of Security Operations podcast, Thomas is joined by Adam Khan. Adam is a cybersecurity and technology leader with over 25 years of experience working at Fortune 500 companies. He has a proven track record of building and managing global security teams, leading engineering, infrastructure, application, and product, and is currently VP of Global Security Operations at Barracuda.
CVE 2023-2033: What is it, and how to fix it?
Zero-day vulnerabilities are the surprise no developer wants to get. Because these security flaws are unknown to developers, they have zero days to prepare or mitigate the vulnerability before an exploit can occur. 62% of vulnerabilities were first exploited as zero-day vulnerabilities, so they are far more prevalent than we think. Even Google Chrome can attest to that after discovering a series of zero-day vulnerabilities that left its billions of users at risk in 2023.
FIPS Compliant Algorithms for Encryption, Hashing, and Signing
With the rise of cyber threats and the increasing volume of sensitive data being transmitted over networks, organizations must prioritize the use of cryptographic algorithms that meet stringent standards for security and reliability. One such standard is FIPS (Federal Information Processing Standards) compliance, which ensures that cryptographic algorithms adhere to the rigorous criteria set forth by the U.S. government.
What is DevSecOps?
Aviram Shmueli, a cofounder at Jit, provides an overview of DecSecOps and explains its benefits compared to traditional product security practices that rely on surfacing vulnerabilities in production.
AT&T DDoS Defense Portal Email Alert Video
In this video, you'll learn about AT&T DDoS Defense Service Alert Emails. We'll also give you an overview of the investigation process. For any high severity alerts, which are caused by traffic exceeding thresholds in protected zones, the DDoS Defense Service sends an alert email to your contacts. At the same time, a ticket is created for the AT&T Threat Management Team to investigate the alert.
The Cyber Achilles' Heel: Why World Leaders and High-Profile Individuals Must Prioritise Cybersecurity
Social media has become an indispensable tool for communication, outreach, and engagement. From world leaders to high-profile individuals, these platforms offer an unparalleled opportunity to connect with the masses. However, as recent incidents have shown, the very same platforms can also be a double-edged sword, exposing vulnerabilities and putting sensitive information at risk.
Integrating DevSecOps into Developer Workflows
Aviram Shmueli, a cofounder at Jit, discusses the importance of integrating DevSecOps into developer tooling like GitHub and Slack.