%term

Secretless, Identity-based Infrastructure Access

Sep 2, 2022 By Teleport In Teleport

Passwords are everywhere. Sometimes they are obvious — hardcoded in the code or laying flat in the file, but other times they take the form of API keys, tokens, cookies, or even second factors. Devs pass them in environment variables, vaults mount them on disk, teams share them over links, and copy them to CI/CD systems and code linters. Eventually, someone leaks, intercepts, or steals them. Because they pose a security risk, there is no other way to say it: passwords in our infrastructure have to go.

View Video

Teleport

Read more about Secretless, Identity-based Infrastructure Access

Recent Phishing Attack Highlights How Hacks Are Changing

Sep 2, 2022 By Sule Tatar In Arctic Wolf

Hackers are getting smarter, and phishing is becoming more sophisticated. Most employees know that when an email comes in from a random address, rife with misspellings, and credentials or other private data demands, it’s absolutely a phishing scam. But what if, as an employee, you got a text to update your Okta credentials? What if the link took you to a domain that looked just like your Okta login?

Read Post

Arctic Wolf

Read more about Recent Phishing Attack Highlights How Hacks Are Changing

Cybersecurity Challenges in the Metaverse: How to Keep Your Assets Safe

Sep 2, 2022 By Vlada Terenina In INETCO

Imagine you are chilling over coffee with your co-workers in a break room. The deadline for the launch of your newest product is imminent and you are discussing last-minute design modifications. Digital images of the product float by as your AI assistant suggests the best potential design modifications. Together, you and your team choose the final product design and are ready for the next step in the launch. Virtual high fives ensue.

Read Post

INETCO

Read more about Cybersecurity Challenges in the Metaverse: How to Keep Your Assets Safe

The Importance of Physical Security | Arctic Wolf

Sep 2, 2022 By Arctic Wolf In Arctic Wolf

Physical security breaches by social engineers can be catastrophic for your organization's data. Join Special Agent Cipher to learn about the types of social engineering tactics used by bad actors, along with strategies to keep your organization out of harm's way.

View Video

Arctic Wolf

Read more about The Importance of Physical Security | Arctic Wolf

Is IoT Security Only as Good as The Weakest Link? A Guide to Protecting Your Security Environment In 2022

Sep 2, 2022 By Louise José In Device Authority

The Internet of Things (IoT) has been a rapidly implemented technology, with estimates suggesting that there will be over 50 billion devices connected to the internet by 2020. This number includes not only traditional computing devices, but also a wide range of “smart” devices including cars, appliances, and even medical implants. As these devices become more and more common, the need for effective security management becomes increasingly important.

Read Post

Device Authority

Read more about Is IoT Security Only as Good as The Weakest Link? A Guide to Protecting Your Security Environment In 2022

Response to the Enduring Security Framework (ESF) Guide for Developers

Sep 2, 2022 By Gareth Rushgrove In Snyk

At Snyk we invented developer-first security. We believe involving developers in the practice of security is key to building and running modern applications. This is exactly why the recent publication, Recommended Practices Guide for Developers by the The National Security Agency (NSA), Cybersecurity and Infrastructure Security Agency (CISA), and the Office of the Director of National Intelligence (ODNI) piqued our interest.

Read Post

Snyk

Read more about Response to the Enduring Security Framework (ESF) Guide for Developers

This Old Hack: Phishing

Sep 2, 2022 By Arctic Wolf In Arctic Wolf

In this episode of This Old Hack, a bad actor writes in for help on how to improve their phishing game after not being able to get through filters anymore. Luckily for them, the Old Hack has some answers. Learn about the latest tactics hackers are using to successfully create convincing looking phishing emails.

View Video

Arctic Wolf

Read more about This Old Hack: Phishing

This Week in VulnDB

Sep 2, 2022 By Snyk In Snyk

Welcome to This Week in VulnDB, Each episode we will look through some of the newer vulnerabilities in the Snyk vulnerability database, looking at emerging trends in attack vectors appearing in programming languages, platforms and ecosystems.

View Video

Snyk

Read more about This Week in VulnDB

UKG Video Blog - Tis the Season: Prepping for Benefits Enrollment and Year-End

Sep 2, 2022 By NeoSystems In NeoSystems

Through UKG Pro, NeoSystems provides Payroll Administration and Tax Management, Compliance, Benefits Management, Open Enrollment, Recruiting, and On-Boarding as well as property, skills, and certification tracking – all through a cloud-based manager & employee self-service platform.

Read Post

NeoSystems

Read more about UKG Video Blog - Tis the Season: Prepping for Benefits Enrollment and Year-End

CrowdStrike Introduces Sandbox Scryer: A Free Threat-Hunting Tool for Generating MITRE ATT&CK and Navigator Data

Sep 1, 2022 By Greg Dalcher - Joel Spurlock In CrowdStrike

Threat hunting is a critical security function, a proactive measure to detect warning signs and head off attacks before a breach can occur. Scaling threat hunting capabilities involves quickly deriving actionable intelligence from a large number of behavioral data signals to identify gaps and reduce time to respond.

Read Post