New in Vanta | October 2023
This past month, we announced the single destination to showcase your security posture, Vanta Trust Center, 19 new integrations, Private Links for Vendor Risk Management, and more:
Hackers Get Hacked Back!
Have you ever wondered how hackers get hacked back? Today we detail the story of how this is possible! Did you learn something from this video? Make sure to comment it below! For more information about SecurityScorecard, you can find us here: SecurityScorecard is the global leader in cybersecurity ratings and the only service with over 12 million companies continuously rated. The company is headquartered in New York and operates in 64 countries around the globe.
Falcon Exposure Management Internet Exposure Identification: Demo Drill Down
Unseen internet exposures can be the weakest link in a security chain. Falcon Exposure Management's Internet Exposure Identification feature illuminates these critical exposures, enabling organizations to secure their digital frontiers against potential threats. This demo will demonstrate the value of turning invisible risks into actionable security intelligence.
How to Sign Kubernetes using Sigstore #cloudsecurity #cybersecurity #container
Snyk helps software-driven businesses develop fast and stay secure. Continuously find and fix vulnerabilities for npm, Maven, NuGet, RubyGems, PyPI and more.
The 443 Podcast - Episode 268 - Combined Cyber and Kinetic Warfare
This week on the podcast, we cover an analysis from Mandiant on an attack lead by the Russian state-sponsored threat actor Sandworm that came alongside missiles strikes against Ukraine. Before that, we review Okta's post mortum from their recent cyber incident. We end the episode by discussing udpated research from Jamf on a North Korean threat actor targeting the financial sector. The 443 Security Simplified is a weekly podcast that gets inside the minds of leading white-hat hackers and security researchers, covering the latest cybersecurity headlines and trends.
Securing Your Web Applications and APIs with Dynamic Analysis
Web applications are one of the most common vector for breaches, accounting for over 40% of breaches according to Verizon's 2022 Data Breach Report. Ensuring that your web applications are sufficiently protected and continue to be monitored once they are in production is vital to the security of your customers and your organization.
SQL CIS Benchmark Guide
A “SQL Benchmark” and a “SQL Server Benchmark” are related concepts, but they are not the same. The difference lies in the specific context and focus of the benchmarking process. SQL benchmarks can help compare the relative performance of different SQL servers or configurations.
Securing Your Web Applications and APIs with Veracode DAST Essentials
Web applications are one of the most common vector for breaches, accounting for over 40% of breaches according to Verizon's 2022 Data Breach Report. Ensuring that your web applications are sufficiently protected and continue to be monitored once they are in production is vital to the security of your customers and your organization.
A Comprehensive Comparison of Cyber Essentials vs Cyber Essentials PLUS
Protecting sensitive data and maintaining customer trust is paramount, and demonstrating your data security commitment is equally important. One way to achieve this is by obtaining a Cyber Essentials certification. But what are the differences between “cyber essentials vs cyber essentials plus”, and how do they impact your organisation’s cybersecurity strategy?
Okta Threat Advisory from Coralogix
On October 20, 2023, Okta Security confirmed malicious activity that exploits stolen credentials, allowing unauthorized access to the company’s support case management system. Several other vendors such as BeyondTrust were also affected by the incident and have since shared their own disclosures. Overall, the incident has ignited substantial concerns over its capacity to trigger a supply chain compromise.