%term

Not decided about adopting a corporate password manager? I'll give you 9 reasons to do that

May 5, 2022 By Alexandre Cagnoni In WatchGuard

Teaching about password security in the early 2000s would usually start with a question to the audience: how many of you have up to 10 passwords to remember? How about 25? Anyone with more than 50? Today I usually start with “how many credentials do you believe to have still active? Less than a hundred?”

Read Post

WatchGuard

Read more about Not decided about adopting a corporate password manager? I'll give you 9 reasons to do that

ONUG Spring 2022 Session: Verify security posture in hybrid multi-cloud environments

May 5, 2022 By Forward Networks In Forward Networks

In an era when hybrid multi-cloud environments are the norm, extending the carefully architected network security policies is virtually impossible because IT teams cannot visualize their multi-cloud estate or monitor traffic behavior past the point of egress. Piecing together the cloud security posture requires combining data from multiple siloed applications.

View Video

Forward Networks

Read more about ONUG Spring 2022 Session: Verify security posture in hybrid multi-cloud environments

Ten considerations for securing cloud and containers

May 5, 2022 By Daniella Pontes In Sysdig

Most organizations adopt cloud and containers to accelerate application development, but by adopting a secure DevOps approach and embedding security into the DevOps workflow, you can ensure security controls don’t slow down developers. Check out these key considerations to keep in mind as you put together your plan for securing clouds and containers.

Read Post

Sysdig

Read more about Ten considerations for securing cloud and containers

25+ Vulnerable websites to practice your ethical hacking skills

May 5, 2022 By Editor In Cyphere

In recent times as the field of information is on the rise a new term ‘Ethical Hacking’ has emerged and opened many different avenues for IT and cyber security professionals. Now more and more people are getting familiar with the field of information security and are getting interested in learning about hacking skills.

Read Post

Cyphere

Read more about 25+ Vulnerable websites to practice your ethical hacking skills

Achieve Near-Zero RPO & RTO with Orchestrated Application Recovery

May 5, 2022 By Shaomin Chen In Rubrik

In the summer of 2021, Rubrik officially released its first SaaS-based automated Disaster Recovery (DR) solution, Orchestrated Application Recovery. Orchestrated Application Recovery is incredibly easy to use: no need to install new binaries, no need to integrate between different vendor’s products.

Read Post

Rubrik

Read more about Achieve Near-Zero RPO & RTO with Orchestrated Application Recovery

What your organisation needs to know about smishing

May 5, 2022 By The Redscan Team In Redscan

In this blog, we discuss why smishing is increasing and what you can do to reduce the risks to your organisation and employees.

Read Post

Redscan

Read more about What your organisation needs to know about smishing

Generating an SBOM is just the tip of the iceberg

May 5, 2022 By Jon Geater In DataTrails

It has been nearly a year since the President Biden’s Executive Order 14028 catapulted Software Bills of Materials (SBOMs) from niche topic to the forefront of efforts to improve security of cyber supply chains. Since then not only have federal agencies including NIST and CISA delivered significant amounts of guidance and insight, but SBOMs have been the subject of intense debate across developer communities and beyond.

Read Post

DataTrails

Read more about Generating an SBOM is just the tip of the iceberg

Network evidence for defensible disclosure

May 5, 2022 By Richard Bejtlich In Corelight

What do I say if my team discovers a breach of our digital assets? This is a question that requires understanding “defensible disclosure,” a term first employed in the statistical, medical, legal, and financial communities.* Understanding what this term means and how to live up to its expectations is key in an age where organizations regularly handle intrusions and, sometimes, suffer breaches.

Read Post

Corelight

Read more about Network evidence for defensible disclosure

Bridging The Needs Of Security And Development Teams, Veracode Unveils Next-generation Software Security Platform

May 4, 2022 By Veracode In Veracode

Veracode announces its Continuous Software Security Platform, which seamlessly embeds application security into the software development lifecycle (SDLC). The platform streamlines workflows by bringing together development and security teams to provide a broad understanding of risk, remediation guidance, and progress at every stage of the development process.

Read Post

Veracode

Read more about Bridging The Needs Of Security And Development Teams, Veracode Unveils Next-generation Software Security Platform

Coffee Talk with SURGe! 2022-MAY-03 CISA Top Vulnerabilities, Mandiant Zero-Days, State of Security

May 4, 2022 By Splunk In Splunk

Grab a cup of coffee and join Ryan Kovar, Audra Streetman, and Mick Baccio for another episode of Coffee Talk with SURGe. This week the team from Splunk discussed CISA's list of the top exploited vulnerabilities for 2021, Mandiant's analysis of 80 zero-days exploited in the wild last year, and signs the ransomware group REvil may be back in operation. Mick and Ryan competed in a 60 second charity countdown on how to solve the talent crisis in cybersecurity before taking a deep dive into the topic of zero-days and vulnerability mining.

View Video