%term

SOCtails Episode 4 - Respond Fast to Security Incidents with Automated Playbooks

Jun 22, 2021 By Splunk In Splunk

Investigating and responding to phishing attacks is tedious and time-consuming. Kevin responds to phishing attacks by following a step-by-step manual process catalogued in his "Cybersecurity Playbook." Jeff shows Kevin an easier and faster way to respond using automated playbooks from Splunk SOAR (formerly known as Splunk Phantom).

View Video

Splunk

Read more about SOCtails Episode 4 - Respond Fast to Security Incidents with Automated Playbooks

SSL/TLS Protocols: Definition, Differences, Versions & Vulnerabilities

Jun 22, 2021 By Editor In Cyphere

SSL TLS are two encryption protocols that provide security for communication over the internet. SSL protocol has been around for many years, but both are still widely used today. Why is this? The answer is simple: these protocols work well to encrypt data sent between a client and server computer, which can be very important in protecting sensitive information such as credit card numbers or passwords. But what really sets them apart from each other?

Read Post

Cyphere

Read more about SSL/TLS Protocols: Definition, Differences, Versions & Vulnerabilities

Announcing State of Software Security v11: Open Source Edition

Jun 22, 2021 By Suzanne Ciccone In Veracode

Today, we published the open source edition of our annual State of Software Security report. Solely focused on the security of open source libraries, the report includes analysis of 13 million scans of more than 86,000 repositories, containing more than 301,000 unique libraries. In last year’s open source edition report, we looked at a snapshot of open source library use and security.

Read Post

Veracode

Read more about Announcing State of Software Security v11: Open Source Edition

Security wins by starting out with Static Code Analysis for JavaScript projects

Jun 22, 2021 By Snyk In Snyk

Writing quality code is something all of us developers strive for, but it's not an easy task. Secure coding conventions have long been an aspiring goal for many developers, as they scour the web for best practices, and guidelines from OWASP and other resources. Some developers may have even tried using static code analysis to find security issues, like the use of linters (ESLint), only to find out that they are brittle and report on many false positives.

View Video

Snyk

Read more about Security wins by starting out with Static Code Analysis for JavaScript projects

How to Interpret the Various Sections of the Cybersecurity Executive Order

Jun 22, 2021 By Hope Goslin In Veracode

The Biden administration released a new executive order for cybersecurity on May 12, 2021. Although many know the overarching message of the executive order, it’s also important to know the specific details outlined in each section.

Read Post

Veracode

Read more about How to Interpret the Various Sections of the Cybersecurity Executive Order

The Evolution of Securing Critical Infrastructure

Jun 22, 2021 By Irfahn Khimji In Tripwire

Everything evolves. Simply stated, the gradual development of something from a simple to a more complex form is what evolution is all about. When something ceases to evolve, yet still exists, it becomes classified as a living fossil. One example is the Ginkgo Biloba tree. It took millions of years for this evolution to cease. This all happened without any help from humans.

Read Post

Tripwire

Read more about The Evolution of Securing Critical Infrastructure

Vulnerability Management with Sysdig

Jun 22, 2021 By Sysdig In Sysdig

Software is always changing and improving, and within this process, developers can unknowingly introduce vulnerabilities. Discover how Sysdig Secure provides a single vulnerability management solution for both containers and hosts. It allows you to validate compliance across your whole infrastructure. And it's so easy to deploy, that you will be scanning images and hosts in seconds.

View Video

Sysdig

Read more about Vulnerability Management with Sysdig

Voice-Activated Device Privacy: What You Need to Know

Jun 22, 2021 By Lilie Matia In Tripwire

When it comes to evaluating technology in the home, there seems to be no shortage of new devices and shiny gadgets, mainly part of the Internet of Things (IoT), to discuss. Unfortunately, there seems to be no shortage of security issues to consider regarding these same devices, either.

Read Post

Tripwire

Read more about Voice-Activated Device Privacy: What You Need to Know

Introducing the World's First Modern Cloud-Based SecOps Platform: Splunk Security Cloud

Jun 22, 2021 By Jane Wong In Splunk

To say that the past year presented its fair share of cybersecurity challenges to the InfoSec community would be a drastic understatement. The rapid migration to remote work at scale left 80% of CIOs unprepared, and SecOps teams struggled to confront the evolving threat landscape with disparate toolkits and skill sets. Not to mention that as more organizations shifted to hybrid and multi-cloud environments at scale, cloud complexity (and cloud-based threats) skyrocketed.

Read Post

Splunk

Read more about Introducing the World's First Modern Cloud-Based SecOps Platform: Splunk Security Cloud

Essential Eight Compliance Guide (Updated for 2021)

Jun 22, 2021 By Edward Kost In UpGuard

In an effort to significantly improve the cyber resilience of Australian businesses, the Australian federal government is mandating compliance across all eight cybersecurity controls of the Essential Eight framework. This is an ambitious move that may be burdensome to the many entities still struggling to comply with just the top four controls of the Essential Eight.

Read Post