%term

Wallarm Demo: Orphan and Shadow API Detection

Aug 21, 2023 By Wallarm In Wallarm

Orphan APIs can lead to a host of unnecessary issues such as misallocated resources, maintenance issues, wasted development and testing time, and issues with maintainability, scalability, security and usability. Watch this quick demo to learn how Wallarm API Discovery helps you identify and manage any Orphan APIs in your portfolio.

View Video

Wallarm

API
Security

Read more about Wallarm Demo: Orphan and Shadow API Detection

Starting Your Saving Journey Right With a Challenge: Practical Steps

Aug 21, 2023 By SecuritySenses In SecuritySenses

Saving money can seem daunting, especially when you're just starting out on your financial journey as a young adult. The world seems full of expenses, and it's incredibly hard to find any extra money in your paychecks to set aside for savings. Necessities like rent, transportation, student loans, and grocery bills eat up your income. Every month flies by, and savings never seem to happen. It's easy to get discouraged and think you'll never be able to save successfully. But with some practical steps and a little creative challenge, you absolutely can get your lifelong saving journey off to the right start.

Read Post

SecuritySenses

Read more about Starting Your Saving Journey Right With a Challenge: Practical Steps

[Eye-Opening] Increase of Phishing Attacks in Australia Should Alarm Organizations

Aug 21, 2023 By Stu Sjouwerman In KnowBe4

Phishing attacks are on the rise in Australia, the Australian Broadcasting Corporation (ABC) reports. “The latest figures reveal phishing is a practice that is only becoming more and more widespread,” the ABC says.“Phishing was the most reported scam to Scamwatch in 2022, with the government website recording 74,573 complaints — a 4.6 per cent increase on the previous year.

Read Post

KnowBe4

Read more about [Eye-Opening] Increase of Phishing Attacks in Australia Should Alarm Organizations

Two Tesla Employees Expose Confidential Company Data

Aug 21, 2023 By Steven In IDStrong

Tesla, an Austin-Texas-based automaker specializing in electric vehicles, employs more than 127,000 workers worldwide today. The automaker has an annual revenue of 53.8 Billion USD and is a significant company that employees rely on to protect their data. Recently, two Tesla employees gave away information that resulted in a breach that could significantly impact workers.

Read Post

IDStrong

Read more about Two Tesla Employees Expose Confidential Company Data

Detecting Lateral Movement Using Splunk User Behavior Analytics

Aug 21, 2023 By Cui Lin In Splunk

One of the most challenging aspects of running an effective Security Operations Center is how to account for the high volume of notable events that ultimately do not present a risk to the business. Some examples of non-risky notable events include a user forgetting their password and submitting it erroneously multiple times in a row, or a user accessing a system (for a completely valid reason) at an odd hour outside of their normal behavior.

Read Post

Splunk

Read more about Detecting Lateral Movement Using Splunk User Behavior Analytics

Does GitOps enhance application security?

Aug 21, 2023 By Vandana Verma Sehgal In Snyk

GitOps was pioneered by Weeveworks in 2017. It uses familiar tools to implement continuous deployment for cloud-native applications, improving the developer experience of Kubernetes cluster management and application delivery.

Read Post

Snyk

Read more about Does GitOps enhance application security?

CVE-2023-32560: Critical Remote Code Execution Vulnerabilities in Ivanti Avalanche

Aug 21, 2023 By James Liolios In Arctic Wolf

On August 14th, 2023, cybersecurity company Tenable released a research advisory detailing two stack-based buffer overflow vulnerabilities, collectively tracked as CVE-2023-32560, impacting Ivanti Avalanche products version 6.4.0 and older. A threat actor could remotely exploit the vulnerabilities without user authentication by specifying long data type items to overflow the buffer.

Read Post

Arctic Wolf

Read more about CVE-2023-32560: Critical Remote Code Execution Vulnerabilities in Ivanti Avalanche

Becoming FedRAMP and StateRAMP Authorized Part 1

Aug 21, 2023 By CISO Global In CISO Global

Is FedRAMP part of your company's roadmap? CISO Global's Managing Director Baan Alsinawi details what becoming FedRAMP authorized can do to boost your business.

View Video

CISO Global

Security

Read more about Becoming FedRAMP and StateRAMP Authorized Part 1

Security Researchers Share Insights on Black Hat 2023 Topics and Trends

Aug 21, 2023 By Natalie Tischler In Veracode

Shocking to no one: Artificial Intelligence (AI) was a huge topic at Black Hat USA 2023, but what did we learn about it? With no shortage of talks on it, there are many insights to take into account. We asked highly skilled Software Security Researchers who attended both Black Hat and DEFCON to weigh-in on the most insightful moments, particularly related to AI. Here’s what we found.

Read Post

Veracode

Read more about Security Researchers Share Insights on Black Hat 2023 Topics and Trends

DEF CON 31: A hot time in the Las Vegas heat and some cool days in AppSec Village

Aug 21, 2023 By Dwayne McDaniel In GitGuardian

DEF CON 31 was a unique experience. Read highlights from GitGuardian's time in Las Vegas, AppSec Village, the Hunt the Hacker CTF, insightful talks, and hacker fun.

Read Post