%term

SolarWinds CEO Blames Intern for 'SolarWinds123' Password Leak Scandal! || Razorthorn Security

Dec 11, 2023 By Razorthorn In Razorthorn

Dive deep into the SolarWinds scandal as the former CEO points fingers at an intern for the notorious 'SolarWinds123' password leak! Uncover the critical lapse in password security that lingered undiagnosed for years. In 2019, an independent security researcher stumbled upon 'SolarWinds123' exposed on the public internet, leading to a stern warning to the company about the vulnerable file server.

View Video

Razorthorn

Security

Read more about SolarWinds CEO Blames Intern for 'SolarWinds123' Password Leak Scandal! || Razorthorn Security

What is penetration testing as a service (PTaaS)?

Dec 11, 2023 By Mark Nicholls In Redscan

This plays a vital role in helping organisations mitigate cyber risk by shutting down vulnerabilities before they can be exploited maliciously. In this blog article, we outline what PTaaS is and how it can help you advance your cyber resilience.

Read Post

Redscan

Read more about What is penetration testing as a service (PTaaS)?

New in Vanta | November 2023

Dec 11, 2023 By Vanta In Vanta

This past month, we hosted our second annual customer conference, VantaCon, and shipped some major updates to the Vanta platform, including our Improved audit experience, five new integrations (bringing the total number of supported integrations to over 300!), Risk Management dashboard and updates, and more: ‍ ‍ ‍

Read Post

Vanta

Read more about New in Vanta | November 2023

Exposed Server Headers and Cybersecurity Risk

Dec 11, 2023 By Caitlin Postal In UpGuard

Your web server conveys a variety of information to the client when a visitor opens your website. They can access specific policies you've set and sometimes identify what kind of software you use to run your system. Sometimes, that's okay. Other times, the information exposed in your server header can lead directly to a malicious cyber attack.

Read Post

UpGuard

Read more about Exposed Server Headers and Cybersecurity Risk

How CrowdComms and Henchman use ISO 27001 and SOC 2 together

Dec 11, 2023 By Vanta In Vanta

If you’re a growing start up, chances are you’ll need to demonstrate trust to your customers. To ensure you have strong data protection measures in place and a robust security posture, they’ll often ask to review either your ISO 27001 certification or your SOC 2 report. For a while, you may get by by filling out their lengthy security questionnaires, but eventually you’ll need to get your ISO 27001 or SOC 2, depending on your product, industry, and region.

Read Post

Vanta

Read more about How CrowdComms and Henchman use ISO 27001 and SOC 2 together

How Self-Learning AI Has Helped CARIAD Build An Automotive Software Powerhouse

Dec 11, 2023 By Code Intelligence In Code Intelligence

CARIAD has been building one unified software platform for all Volkswagen brands to provide them with reliable software and digital best practices. In recent years, CARIAD and the rest of the automotive software sector faced extensive industry regulation and an array of dangerous and costly vulnerabilities. By introducing feedback-based fuzzing, an advanced white-box testing method that uses self-learning AI to uncover deeply hidden bugs and security vulnerabilities, CARIAD was able to find and fix potentially dangerous issues early in the development process.

View Video

Code Intelligence

Read more about How Self-Learning AI Has Helped CARIAD Build An Automotive Software Powerhouse

Snyk recognized as an Emerging Segment Leader in Application Security in Snowflake's Next Generation of Cybersecurity Applications report

Dec 11, 2023 By LaToya Muff In Snyk

We are thrilled to announce that Snyk has been acknowledged as a key player in the evolving landscape of application security. The recent release of Snowflake's Next Generation of Cybersecurity Applications report has designated Snyk as an Emerging Segment Leader in Application Security, highlighting our commitment to innovation and excellence in the field.

Read Post

Snyk

Read more about Snyk recognized as an Emerging Segment Leader in Application Security in Snowflake's Next Generation of Cybersecurity Applications report

Simplify Document Authentication and Approval With Egnyte's eSignature

Dec 11, 2023 By Sanjay Kosuri In Egnyte

In the realm of document signing and approval procedures, businesses often encounter numerous challenges. Document processing is time-consuming and tedious, with multiple people having to review, print, sign, and scan documents. This manual process is not only inefficient but can lead to documents being lost or misplaced during transit. Additionally, this cumbersome procedure results in expensive delays that have the potential to disrupt business operations.

Read Post

Egnyte

Read more about Simplify Document Authentication and Approval With Egnyte's eSignature

Friday Flows Episode 16: Monitor Intercom with Nightfall

Dec 11, 2023 By Tines In Tines

Monitor Intercom (or any channel like Zendesk, Slack, email, etc.) to scan messages for data leak. This Tines story can help catch sensitive information and help you stay proactive by automatically creating a case for your team to manage.

View Video

Tines

Read more about Friday Flows Episode 16: Monitor Intercom with Nightfall

Identity Threat Hunting: How CrowdStrike Counter Adversary Operations Is Leading the Charge

Dec 11, 2023 By Thuy Nguyen In CrowdStrike

It’s 10:30 p.m. and you’re heading to bed. Unfortunately, a threat actor has your organization in their crosshairs. While you’re brushing your teeth, they’re crafting a social engineering email to pilfer your employees’ credentials. While you’re putting on your pajamas, they’re finding a path to log in. While you’re asleep, is your organization protected?

Read Post