Security

Snyk Container in 2021: Shifting container security all the way left

Dec 22, 2021 By Jim Armstrong In Snyk

No matter how you slice it, the use of containers and Kubernetes continues to swell. And recent high profile vulnerabilities-that-shall-not-be-named have shown us how important container security is for an overall application security program. Protecting your own code, your dependencies, and the containerized services you use are all a must.

Read Post

Snyk

Read more about Snyk Container in 2021: Shifting container security all the way left

Snyk IaC in 2021: Leading infrastructure as code security for developers

Dec 22, 2021 By Lauren Place In Snyk

With great automation, comes great risk. The advent of infrastructure as code brought about automation for the tedium of deploying, provisioning, and managing resources in public clouds with declarative scripts. However, this automation increased the importance of creating secure IaC scripts or configurations with cloud infrastructure misconfigurations being cited as the biggest area of increased concern (58%) from 2020 to 2021 in the 2021 Snyk Cloud Native Application Security report.

Read Post

Snyk

Read more about Snyk IaC in 2021: Leading infrastructure as code security for developers

Hack Yourself Stockholm 2021 - David Jacoby, Jesper Larsson, Mathias Karlsson, and Shane Murnion

Dec 22, 2021 By Detectify In Detectify

A recording of a panel discussion from Hack Yourself Stockholm 2021 on the theme of attack surface management. Hear the panelists discuss what organizations can do to find and better protect their external attack surface. Featuring security experts from: David Jacoby - Deputy Director for the European Global Research and Analysis Team, Kaspersky Jesper Larsson - Freelance IT-Security Researcher & Penetration Tester Mathias Karlsson - Head of Technical Security, Kivra Shane Murnion - Security Specialist, Skandia.

View Video

Detectify

Read more about Hack Yourself Stockholm 2021 - David Jacoby, Jesper Larsson, Mathias Karlsson, and Shane Murnion

2021 SANS Security Operations Center Report Offers Insight into Latest Industry Standards and Practices

Dec 22, 2021 By Arctic Wolf In Arctic Wolf

A security operations center (SOC), which includes the people, processes, and technology needed to monitor, detect, analyze, and respond to cyber threats, is the foundation of many businesses’ cybersecurity. A SOC, however, is difficult to manage and maintain, requires significant budget and resources, and comes with many other challenges.

Read Post

Arctic Wolf

Read more about 2021 SANS Security Operations Center Report Offers Insight into Latest Industry Standards and Practices

CrowdStrike Launches Free Targeted Log4j Search Tool

Dec 22, 2021 By Randy Burton - Ian Barton In CrowdStrike

The recently discovered Log4j vulnerability has serious potential to expose organizations across the globe to a new wave of cybersecurity risks as threat actors look to exploit this latest vulnerability to execute their malicious payloads using remote code execution (RCE). An immediate challenge that every organization faces is simply trying to understand exactly where you have applications that are using this very popular Java library — but you are not facing this challenge alone.

Read Post

CrowdStrike

Read more about CrowdStrike Launches Free Targeted Log4j Search Tool

Monitoring File Changes with Falcon FileVantage

Dec 22, 2021 By CrowdStrike In CrowdStrike

This video will demonstrate how organizations can use Falcon FileVantage, CrowdStrike's File Integrity Monitoring (FIM) solution, to monitor for file and system changes required to satisfy compliance regulations.

View Video

CrowdStrike

Security

Read more about Monitoring File Changes with Falcon FileVantage

AWS Live Hack Workshop: Snyk and Atlassian

Dec 22, 2021 By Snyk In Snyk

In this application live-hack with Atlassian, we demonstrate how to implement security best-practices early on in your workflow when building applications on AWS.

View Video

Snyk

Read more about AWS Live Hack Workshop: Snyk and Atlassian

AWS Live Hack Workshop: Snyk and Terraform

Dec 22, 2021 By Snyk In Snyk

In this video, we show a live demonstration of the EKS default settings when deploying with Terraform. Learn how small misconfigurations can create unwanted side effects and may put clusters at risk of EKS security issues as well as how you can test and remediate.

View Video

Snyk

Read more about AWS Live Hack Workshop: Snyk and Terraform

Cloud Security Posture Management

Dec 22, 2021 By Arctic Wolf In Arctic Wolf

Arctic Wolf Cloud Security Posture Management security operations identify cloud resources at risk and provide guidance on hardening their posture, simplifying cloud security.

View Video

Arctic Wolf

Read more about Cloud Security Posture Management

JavaScript type confusion: Bypassed input validation (and how to remediate)

Dec 22, 2021 By Snyk In Snyk

Snyk helps software-driven businesses develop fast and stay secure. Continuously find and fix vulnerabilities for npm, Maven, NuGet, RubyGems, PyPI and more.

View Video

Snyk

Read more about JavaScript type confusion: Bypassed input validation (and how to remediate)

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Security

Snyk Container in 2021: Shifting container security all the way left

Snyk IaC in 2021: Leading infrastructure as code security for developers

Hack Yourself Stockholm 2021 - David Jacoby, Jesper Larsson, Mathias Karlsson, and Shane Murnion

2021 SANS Security Operations Center Report Offers Insight into Latest Industry Standards and Practices

CrowdStrike Launches Free Targeted Log4j Search Tool

Monitoring File Changes with Falcon FileVantage

AWS Live Hack Workshop: Snyk and Atlassian

AWS Live Hack Workshop: Snyk and Terraform

Cloud Security Posture Management

JavaScript type confusion: Bypassed input validation (and how to remediate)

Monthly Archive

Follow Us