%term

Cloud Security: Turns Out We Needed Another Acronym (CNAPP)

May 17, 2023 By Anna Belak In Sysdig

Gartner’s 2023 “Market Guide for Cloud-Native Application Protection Platforms” (CNAPP) caused some security leaders to question whether they need yet another tool to protect the complex beast that is the cloud. Procuring yet another shiny security product is probably not how you earn the envy of your peers, but if your organization relies on shipping secure applications fast, then CNAPP should be on your radar. What exactly is CNAPP?

Read Post

Sysdig

Read more about Cloud Security: Turns Out We Needed Another Acronym (CNAPP)

INETCO's Ali Solehdin Talks EBT Fraud Prevention and AI with The Center Square

May 17, 2023 By Ben Drake In INETCO

Scott McClallen – Staff Reporter – The Center Square (The Center Square) – Nationwide, electronic benefits transfer fraud is estimated to cost taxpayers up to $4.7 billion annually, according to the Government Accountability Office. In 2022, the Supplemental Nutrition Assistance Program distributed over $113.7 billion to nearly 22 million households. The federal government entrusts states to reduce fraud in safety net programs. In March, the U.S.

Read Post

INETCO

Read more about INETCO's Ali Solehdin Talks EBT Fraud Prevention and AI with The Center Square

We're Teaming Up With Snyk to Strengthen Developer Security!

May 17, 2023 By Ziad Ghalleb In GitGuardian

The new partnership enables Snyk and GitGuardian to build, integrate and go to market together to help development and security teams scale their security programs and significantly reduce their applications' attack surface at every stage of the code-to-cloud lifecycle.

Read Post

GitGuardian

Read more about We're Teaming Up With Snyk to Strengthen Developer Security!

Trust Talks with Thomas Owen, CISO at Grafana

May 17, 2023 By TrustCloud In TrustCloud

Sravish sits down with Thomas Owen to discuss the latest security and GRC trends.

View Video

TrustCloud

Read more about Trust Talks with Thomas Owen, CISO at Grafana

SafeBreach Coverage for US-CERT Alert (AA23-136A) - BianLian Ransomware Group

May 17, 2023 By Kaustubh Jagtap In SafeBreach

On May 16th, Federal Bureau of Investigation (FBI), Cybersecurity and Infrastructure Security Agency (CISA), and Australian Cyber Security Centre (ACSC) released an advisory highlighting the various malicious indicators of compromise (IOCs) and tactics, techniques, and procedures (TTPs) being leveraged by the BianLian ransomware group.

Read Post

SafeBreach

Read more about SafeBreach Coverage for US-CERT Alert (AA23-136A) - BianLian Ransomware Group

Model-Assisted Threat Hunting (M-ATH) with the PEAK Framework

May 17, 2023 By Ryan Fetterman In Splunk

Welcome to the third entry in our introduction to the PEAK Threat Hunting Framework! Taking our detective theme to the next level, imagine a tough case where you need to call in a specialized investigator (even Sherlock depended on Watson from time to time!). For these unique cases, we can use algorithmically-driven approaches called Model-Assisted Threat Hunting (M-ATH). In this post, we’ll look at M-ATH in detail.

Read Post

Splunk

Read more about Model-Assisted Threat Hunting (M-ATH) with the PEAK Framework

Snyk Hierarchy Best Practices - More than Groups and Orgs

May 17, 2023 By Snyk In Snyk

What can startups and large enterprises have in common? Different organizational structures that cause friction when bringing in and rolling out a new tool. If you are familiar with Snyk, you’ll know that Groups can hold many organizations, and Organizations contain Projects. But that does not stop there… Each node in the organizational layer has different reporting, access control as well as security and license policy settings.

View Video

Snyk

Read more about Snyk Hierarchy Best Practices - More than Groups and Orgs

Trust Unearned? Evaluating CA Trustworthiness Across 5 Billion Certificates

May 17, 2023 By David Bianco In Splunk

In the complex world of Internet security, TLS encryption reigns. The powers behind the throne are the Certificate Authorities (CAs) that play a crucial role in verifying websites' identities and regulating the trust we place in those sites. However, understanding the trustworthiness of the CAs themselves can be challenging.

Read Post

Splunk

Read more about Trust Unearned? Evaluating CA Trustworthiness Across 5 Billion Certificates

Identity Manager | Angular Web Development #12 | Modifying the Standard Web Portal #6

May 17, 2023 By One Identity In One Identity

Video Series: Angular Web Development #12 Part 3: Modifying the Standard Web Portal.

View Video

One Identity

Read more about Identity Manager | Angular Web Development #12 | Modifying the Standard Web Portal #6

Red Teams vs. Blue Teams: What's The Difference?

May 17, 2023 By Laiba Siddiqui In Splunk

Cyberattacks are unauthorized attempts to access data and disrupt your organization's computer systems or networks. It’s reported that 49% of organizations have suffered a data breach over the past two years — it’s possibly higher than that. These data breaches can cause financial loss, reputational damage and legal liabilities. So, organizations develop Red and Blue teams to mitigate the risk of cyberattacks.

Read Post