Examining the Anti-Money Laundering (AML) Risks and Red Flags of Crypto Exchanges
Conversation with Claire Simm and James Brennan on AML compliance and regulations for cryptocurrency.
Accelerating the Snyk infrastructure as code vision with the addition of CloudSkiff
We are thrilled to welcome the team at CloudSkiff to Snyk! Many of you may be more familiar with driftctl, the open source project started by the CloudSkiff team. I wanted to share with you why we’re excited about the addition of this fantastic group of people to Snyk, and our plans for the future of Snyk Infrastructure as Code (Snyk IaC), as well as our commitment to keeping driftctl open source.
Cybersecurity Awareness Month: Top Trends Impacting Your Applications
It’s always important to take a pause to evaluate your software security – and what better time to do that than during Cybersecurity Awareness Month? To help get you thinking, we’ve compiled a list of cybersecurity trends that are happening now and will likely continue throughout the next several years. 1. Ubiquitous Connectivity: We are quickly moving to a world where everyone and everything is connected. Most software is internet-connected, as are most devices.
Software Composition Analysis Mitigates Systemic Risk in the Popular NPM Repository
Chris Wysopal, Veracode Chief Technology Officer and Co-Founder, recently sat down to discuss the open source supply chain attack on the popular npm repository. Below is the transcript and corresponding video of his reaction. Just a few days ago, we saw a classic open source supply chain attack where someone modified a JavaScript library, UA-Parser-JS, which is in the npm repository.
The Callback is Coming From Inside the House
This bone-chilling webinar will cover: A spine-tingling hands-on-keyboard scenario of a motivated and capable insider threat working with the ghoulish adversary. Use of realistic and terrifying exploits and offensive security tools to simulate adversary TTPs, and how organizations are able to hunt for them. A practical threat hunting session demonstrating true behavioral hunting that walks participants through not only how the attack was carried out, but also how they can hunt for this insidious behavior in their own environments.
PAM: A Modern Approach
This short video explains how to thwart cyberattacks by eliminating privileged accounts using a modern approach to privileged access management. To learn more about managing privileged accounts, visit netwrix.com/pam. Traditionally, businesses have maintained dozens or even hundreds of privileged accounts to support critical IT administration activities. These powerful credentials pose a major security risk because they can be stolen by attackers or misused by their owners, either unintentionally or intentionally.
5 Signs You Have the Remote Access VPN Blues
As the pandemic wears on, and return to work plans continue to shift and morph, there’s really never been a better time to re-evaluate how your organization is handling remote access. Your hastily put-together VPN setup may have gotten the job done in the early days of lockdown, but is it really ready to protect a hybrid workforce that’s now used to flexibility and choice? Here are five signs that it might be time to reconsider your remote access VPN.
5 Common Cybersecurity Vulnerabilities in the IoMT
Have you been to the hospital lately? If so, you’ve probably been attached to at least one medical device with at least some sort of internet access. According to Cisco, the average hospital room has, on average, 15-20 connected devices, with an average of 6.2 cybersecurity vulnerabilities between them.
Welcome to Nightfall's Engineering Blog
From our beginnings as childhood friends to coming up together in the tech industry, Isaac and I would catch up on our adventures as professionals working in Silicon Valley: him in the VC world, and me as an engineer at Uber Eats. We’re both very interested in entrepreneurship, so we would always come back to discussing various business ideas, including a topic we’d both become intrigued with — the existing challenges enterprises faced with cloud data security.
Infosec for startups
SOC2, Crypto and Building a security practice In this episode we go deep into SOC2, Cryptography and how to get started building a security practice. Key topics on Access Control Podcast: Episode 12 - Cryptography for Startups.