%term

A Team-Centric View of Security with Snyk and CloudBees

Jun 8, 2021 By Snyk In Snyk

How does a team-centric collaboration focus change how a team maintains the security of the code? In this fireside chat, Patrick Debois, Snyk Labs Researcher, joins Anders Wallgren, Vice President of Technology Strategy at CloudBees. to explore this theme. They discuss what's new and changing with application security and what have we learned from DevOps that organizations can and should apply to DevSecOps.

View Video

Snyk

Read more about A Team-Centric View of Security with Snyk and CloudBees

ProblemChild: Generate alerts to detect living-off-the-land attacks

Jun 8, 2021 By Apoorva Joshi In Elastic

In an earlier blog post, we spoke about building your own ProblemChild framework from scratch in the Elastic Stack to detect living off the land (LOtL) activity. As promised, we have now also released a fully trained detection model, anomaly detection configurations, and detection rules that you can use to get ProblemChild up and running in your environment in a matter of minutes.

Read Post

Elastic

Read more about ProblemChild: Generate alerts to detect living-off-the-land attacks

Singapore's PDPA - Are You Prepared for Your Next Data Breach?

Jun 8, 2021 By Louisa Vogelenzang In Kroll

Businesses in Singapore face mounting challenges to protect customer data as a result of the newly enacted Personal Data Protection (Amendment) Bill (PDPA). With higher penalties expected to be levied from February 2022, it’s imperative that enterprises, particularly those collecting customer data, have a solid information security framework and incident response plan in place.

Read Post

Kroll

Read more about Singapore's PDPA - Are You Prepared for Your Next Data Breach?

Digital Identity Update: Digital Identity Wallet to build a secure and seamless onboarding system for EU

Jun 8, 2021 By Ayesha Kapoor In IDcentral

From ordering groceries to paying taxes everything has taken a shift to digital platforms. If you are still not going digital, you are putting your survival at stake. With the spur in digitization, digital identification has become ‘fundamental’ to the everyday operation of online services, but a universally recognized and secure solution has been lacking ever since.

Read Post

IDcentral

Read more about Digital Identity Update: Digital Identity Wallet to build a secure and seamless onboarding system for EU

Teleport Terraform Provider

Jun 8, 2021 By Teleport In Teleport

Docs: https://goteleport.com/docs/setup/guides/terraform-provider/

View Video

Teleport

Read more about Teleport Terraform Provider

Command Injection - Veracode AppSec Tutorials

Jun 8, 2021 By Veracode In Veracode

Watch this tutorial to learn about Command Injection and better understand the risk it brings to the security of your applications.

View Video

Veracode

Read more about Command Injection - Veracode AppSec Tutorials

CRLF Injection - Veracode AppSec Tutorial

Jun 8, 2021 By Veracode In Veracode

Watch this tutorial to learn about CRLF Injection and better understand the risk it brings to the security of your applications.

View Video

Veracode

Read more about CRLF Injection - Veracode AppSec Tutorial

Ensure Cloud Security With These Key Metrics

Jun 8, 2021 By Mike Mackrory In Sumo Logic

Over the past decade, the way we build and deploy applications has changed dramatically. The explosion of public cloud providers enables us to deploy software without engaging in a drawn-out process to procure and set up infrastructure. Agile, DevOps, Continuous Integration, Continuous Deployment, and other changes to how we work have dramatically accelerated the speed with which we can get new applications and updates in front of our users.

Read Post

Sumo Logic

Read more about Ensure Cloud Security With These Key Metrics

Directory Traversal - Veracode AppSec Tutorials

Jun 8, 2021 By Veracode In Veracode

Watch this tutorial to learn about Directory Traversal and better understand the risk it brings to the security of your applications.

View Video

Veracode

Read more about Directory Traversal - Veracode AppSec Tutorials

I can use VS Code to hack into your development environment

Jun 8, 2021 By Snyk In Snyk

We have been witnessing an ever-growing amount of supply chain security incidents in the wild. And now, those incidents are starting to extend to the place where developers spend most of their time: their integrated development environment, and specifically the Visual Studio Code IDE. Recently, Snyk has discovered and disclosed vulnerabilities that pose a real and imminent threat to developers who use these extensions. The potential compromise is so significantly severe that a remote code execution on a developer’s machine is possible by simply tricking the developer to click a link.

View Video