%term

What is HSTS (HTTP Strict Transport Security)?

Feb 13, 2020 By Abi Tyas Tunggal In UpGuard

HTTP Strict Transport Security (HSTS) is a web security policy mechanism that enables web sites to declare themselves accessible only via secure connections. This helps protect websites and users from protocol downgrade and cookie hijacking attacks.

Read Post

UpGuard

Read more about What is HSTS (HTTP Strict Transport Security)?

Simplify Healthcare Compliance with HITRUST

Feb 12, 2020 By Tripwire In Tripwire

Trying to keep up with managing multiple standards like HIPAA, PCI and NIST simultaneously? The HITRUST CSF takes the guesswork out of compliance for organizations across multiple industries by incorporating common standards like these into one comprehensive, overarching framework.

View Video

Tripwire

Read more about Simplify Healthcare Compliance with HITRUST

A Guide to Digital Privacy for You and Your Family

Feb 12, 2020 By Tripwire Guest Authors In Tripwire

Having worked with many individuals responding to incidents where their digital private images were shared without consent, social media or email accounts had unauthorised access, and even physical safety was a concern, it is all too familiar how terrifying the unknown can be. As someone who has been on both the victim’s and later the responder’s side, I am qualified to express both the terror and knowledge of things you can do to take back control.

Read Post

Tripwire

Read more about A Guide to Digital Privacy for You and Your Family

RDS: Do Not Allow LPT Port Redirection

Feb 12, 2020 By CalCom In CalCom

This policy specifies whether to prevent the redirection of data to client LPT ports during a Remote Desktop Services session. You can use this setting to prevent users from mapping local LPT ports and redirecting data from the remote computer to local LPT port peripherals. If a value is configured to Disabled or Not Configured, the attacker can leverage it to map the client’s LPT ports. In addition, he can use the port to redirect data from the Terminal Server to the local LTP ports.

View Video

CalCom

Read more about RDS: Do Not Allow LPT Port Redirection

Supercharging Workload Security in Your K8s Cluster

Feb 12, 2020 By Vaibhav Thakur In Tigera

2019 was a big year for Kubernetes adoption, and 2020 is sure to exceed that pace. Already, we have seen a large number of organizations migrating their workloads to Kubernetes (k8s) both in public and private clouds as they embrace a hybrid cloud strategy. With so much at stake, what are you currently using for network security inside your k8s cluster?

Read Post

Tigera

Read more about Supercharging Workload Security in Your K8s Cluster

Email alerts from IIS (and other) log files in real time with EventSentry Light

Feb 11, 2020 By EventSentry In EventSentry

This video show how to configure EventSentry (Light) to send email alerts from log files such as IIS. For example, you can receive an email alert if the server encounters an internal server error, or when a bad URL is requested.

View Video

EventSentry

Read more about Email alerts from IIS (and other) log files in real time with EventSentry Light

Recovering from OneDrive for Business ransomware attacks

Feb 11, 2020 By General In ManageEngine

Ransomware has been a growing threat in recent years, and experts now estimate the cost of these attacks at $7.5 billion in the USA alone in 2019. The affected institutions include 966 government agencies, educational establishments, and healthcare providers. Since most ransomware attacks stem from a small mistake made by one end user, either through phishing emails or stolen credentials, the threat is only expected to increase in the years to come.

Read Post

ManageEngine

Read more about Recovering from OneDrive for Business ransomware attacks

What's new in Sysdig Secure: January 2020

Feb 11, 2020 By Pawan Shankar In Sysdig

We’ve been busy this New Year (a rather warm one in San Francisco) to bring you exciting new ways to secure your DevOps journey. Read on for the details and see how you can put them to use!

Read Post

Sysdig

Read more about What's new in Sysdig Secure: January 2020

Testimonial Video about Ignyte

Feb 11, 2020 By Ignyte In Ignyte

Due to the increase in #frequency and volume of new security #threats. Organizations need to conduct a robust assessment to determine their risk and also evaluate their #preparedness. Ignyte's Integrated risk management platform is designed to meet rising expectations of the #compliance function and lay foundations for future success. Ignyte helps teams to look ahead and anticipate and mitigate #uncertainties to enhance business performance.

View Video

Ignyte

Read more about Testimonial Video about Ignyte

New PayPal phishing scam seeks to go beyond login credential information

Feb 11, 2020 By Karoline Gore In AT&T Cybersecurity

Up until now, some of PayPal users’ greatest fears in terms of cybersecurity were phishing scams aimed at obtaining their login credentials. In January of this year, PayPal confirmed a high-severity bug affecting the login form, with PayPal security investigator, Alex Birsan, finding a javascript file with what looked like a CSRF token and a session ID – which makes login information vulnerable to attackers.

Read Post