Winter 2023 Product Release: What's New at Astra Security?
If it were a country, cybercrime would be the world’s third-largest economy, surpassing the wealth of entire nations at $8 Trillion.
TruePill Data Breach Exposes 2.3 Million Patients, Class Action Begins
Digital startup PostMeds Inc., operating as TruePill, is an online pharmacy service based in California. The company allows patients to compare copay pricing, get status notifications on pill orders, and request refills. However, all this may change soon; at the end of October, TruePill endured a severe data breach, landing them in hot water with patients and courts.
Free Template: MITRE ATT&CK Detection Maturity Assessment & Guide
The threat landscape has evolved rapidly in recent years due to major changes in the way organizations operate and adopt new technologies. Cloud services such as Software-as-a-Service (SaaS) and Infrastructure-as-a-Service (IaaS) have seen massive growth over the last decade. With accelerated digital transformation, increased remote working and cloud adoption, the attack surface has increased for most organizations.
The 443 Podcast - Episode 269 - What to Expect from NIS2
This week on the podcast, we dive in to the EU's Network and Information Security directive update, aka NIS2. We'll cover who might be impacted and what to expect in terms of requirements in the coming year. Before that, we give an update to on the latest Scattered Spider threat actor activity followed by an update on LockBit's latest ransomware victims. The 443 Security Simplified is a weekly podcast that gets inside the minds of leading white-hat hackers and security researchers, covering the latest cybersecurity headlines and trends.
Snyk Apps now GA: An easy, standardized, and secure framework for building custom integrations
Snyk is excited to announce general availability of Snyk Apps, a framework for building and distributing custom security solutions to better inform security decisions and boost developer productivity. As Snyk Apps reaches this milestone, Snyk’s Technology Alliance Partnership Program (TAPP) has more than 70 members today.
Container Security Fundamentals - cgroups
In this video we're looking at how to harden Docker containers by using cgroups to restrict the resources provided to them.
Cloud application deployment visibility
Professor Avishai Wool, AlgoSec CTO and Co-founder, just shared a game-changing video on "Cloud Application Deployment Visibility.".
Cloud Integrations: JFrog Achieves AWS PrivateLink Service Ready Validation
At JFrog, we talk about being universal and too integrated to fail. In addition to more than 30 technologies and package types supported natively, this also means supporting our customers in their hybrid and cloud infrastructure. One such key integration capability for customers leveraging Amazon Web Services (AWS) is AWS PrivateLink.
Revolutionizing Cybersecurity: Global Coalition Unveils Password Guidance!
Get ready to witness a game-changing moment in the world of cybersecurity and passwords! An impressive coalition of over 90 nonprofit organizations, including Consumer Reports and the Better Business Bureau, just dropped a brand-new directive protecting your accounts and devices called “The Common Guidance on Passwords.” This announcement sets the stage for the grand inauguration of “World More Than a Password Day,” which was on November 10, 2023.
DevSecOps Best Practices: Leveraging Veracode DAST Essentials
DevSecOps is a modern approach to software development that implements security as a shared responsibility throughout application development, deployment, and operations. As an extension of DevOps principles, DevSecOps helps your organization integrate security testing throughout the software development life cycle. In this blog, we discuss DevSecOps best practices and practical steps to producing secure software.