%term

How Threat Intelligence Could Have Helped Prevent 2020's Cybersecurity Incidents

Apr 22, 2021 By Threat Intelligence Team In Cyberint

If anyone has benefitted from the pandemic, it has been cyber attackers. As businesses expanded their investment in cloud resources and other IT resources in response to the pandemic, cyberattacks also dramatically increased. Businesses reported 445 million cyberattack incidents in 2020, double the rate for 2019. It didn’t have to be this way. With stronger threat intelligence solutions in place, many of the security incidents of 2020 could likely have been averted.

Read Post

Cyberint

Read more about How Threat Intelligence Could Have Helped Prevent 2020's Cybersecurity Incidents

Genesis Market: A Hacker's Haven of Stolen Credentials

Apr 22, 2021 By Netacea In Netacea

Netacea’s Threat Research team works diligently to keep a close eye on emerging bot threats, ensuring we stay one step ahead of cybercriminals and hackers. The team recently completed an exclusive investigation into the Genesis Market, an illegal online marketplace for stolen credentials. While many underground markets for stolen credentials operate from the anonymity of the dark web, Genesis Market is accessible from the open web.

Read Post

Netacea

Read more about Genesis Market: A Hacker's Haven of Stolen Credentials

Full Cybersecurity Regulations Overview for DoD Prime and Subcontractors

Apr 22, 2021 By Ignyte In Ignyte

This webinar was recorded and co-hosted with MAGNET: The Manufacturing Advocacy and Growth Network. As the NIST and Ohio MEP program advocates, MAGNET has invited a leader of their technological and educational cybersecurity partners, Ignyte Assurance Platform and Ignyte Institute, for a conversation on how to get on board with the emerging Cybersecurity Maturity Model Certification (CMMC).

View Video

Ignyte

Read more about Full Cybersecurity Regulations Overview for DoD Prime and Subcontractors

12 - Using the new Connect Web Services (1.5+)

Apr 22, 2021 By Forescout In Forescout

The new Connect Web Service feature is available in 1.5.0 provides the ability to retrieve or update custom host properties defined in the App and potentially trigger any Forescout Action based on the value of these properties. Watch this video to gain a hands-on understanding of how to leverage this feature in your App.

View Video

Forescout

Read more about 12 - Using the new Connect Web Services (1.5+)

Reporting Live From Collision Conference 2021: Part One!

Apr 22, 2021 By Meaghan McBee In Veracode

This week, Collision (virtually) kicked off its annual conference, bringing together creatives, builders, influencers, innovators, and other great minds to cover some of the hottest topics in business and technology. Known as ‘America’s fastest-growing tech conference,’ this year Collision featured over 450 speakers with more than 100 hours of content to consume across the three-day event.

Read Post

Veracode

Read more about Reporting Live From Collision Conference 2021: Part One!

How to Plan a Threat Hunt: Using Log Analytics to Manage Data in Depth

Apr 22, 2021 By Thomas Hazel In ChaosSearch

Security analysts have long been challenged to keep up with growing volumes of increasingly sophisticated cyberattacks, but their struggles have recently grown more acute. Only 46% of security operations leaders are satisfied with their team’s ability to detect threats, and 82% of decision-makers report that their responses to threats are mostly or completely reactive — a shortcoming they’d like to overcome.

Read Post

ChaosSearch

Read more about How to Plan a Threat Hunt: Using Log Analytics to Manage Data in Depth

A hacker's approach to finding security bugs in open source software

Apr 22, 2021 By Jocelyn Chan In Detectify

Spencer Pearlman, Security Researcher at Detectify, presented A Hacker’s Approach to Finding Security Bugs in Open Source Software in a partnered webinar with friends at Debricked. Securing modern web applications takes new approaches, and this includes looking at it from a hacker’s perspective. Here are highlights from the presentation on how tech teams can apply the same hacker mindset to discover vulnerabilities in open-source software in their tech stack.

Read Post

Detectify

Read more about A hacker's approach to finding security bugs in open source software

Developer Security Champions Rule the DevSecOps Revolution

Apr 22, 2021 By Julie Peterson In Mend

DevSecOps has fundamentally changed the way in which organizations approach security in modern software development. The role of developer security champion was created to meet the need for security to be tightly integrated into DevOps and DevSecOps practices. Read on to learn more about what developer security champions are and how they help promote secure coding best practices as organizations work toward continuous integration and delivery.

Read Post

Mend

Read more about Developer Security Champions Rule the DevSecOps Revolution

Snyk IaC public beta introduces Terraform plan analysis

Apr 22, 2021 By Ron Tal In Snyk

We’re happy to share new beta features of Snyk Infrastructure as Code (Snyk IaC) inside the Snyk CLI, adding support for Terraform plan scanning, plus performance and security improvements.

Read Post

Snyk

Read more about Snyk IaC public beta introduces Terraform plan analysis

Kubernetes Quick Hits: Use SecurityContext to run containers with a read-only filesystem

Apr 22, 2021 By Snyk In Snyk

In this episode of our Kubernetes Quick Hits video series, Eric Smalling–Sr. In less than four minutes, you’ll learn how to use the readOnlyRootFilesystem control to keep your containers immutable and safe from modification by hackers and misbehaving code. Snyk helps software-driven businesses develop fast and stay secure. In addition to container security scans, Snyk can continuously monitor to find and fix vulnerabilities for npm, Maven, NuGet, RubyGems, PyPI and more.

View Video