%term

Brute-Force Attacks: How to Defend Against Them

Jun 2, 2022 By Arctic Wolf In Arctic Wolf

When you hear the words “brute force," subtlety is probably not the first thing that comes to mind. Indeed, classic brute-force cyber attacks use the most straightforward tactics—trial and error—to gain entry into a protected system. When brute force works, the attack's type, depth, and severity depend on the attacker's goals.

Read Post

Arctic Wolf

Read more about Brute-Force Attacks: How to Defend Against Them

GoodWill Ransomware? Or Just Another Jasmin Variant?

Jun 2, 2022 By Gustavo Palazolo In Netskope

In March 2022, researchers spotted a new ransomware family named GoodWill, with a new method to collect the ransom. Instead of requesting payment through crypto coins like other threats such as Night Sky or Hive, GoodWill requests that its victims help vulnerable people by following a sequence of steps, such as donating clothes, feeding less fortunate children, or providing financial assistance to hospital patients.

Read Post

Netskope

Read more about GoodWill Ransomware? Or Just Another Jasmin Variant?

Using Rego as a generic policy language

Jun 2, 2022 By Dickson Boateng In Snyk

Policies have a vital role in every organization, but can mean a lot of different things depending on the context. For our purposes, a policy refers to the principles or ideas that an organization uses to make decisions. In this post, we’ll discuss Open Policy Agent (OPA) and its rule language, Rego, highlighting how we can use them to write a simple policy for a payroll microservice.

Read Post

Snyk

Read more about Using Rego as a generic policy language

Developing Secure Software With Confidence

Jun 2, 2022 By Colleen Reidy In Veracode

Software development and security often have separate challenges and concerns. Developers are worried about pushing software to production in a timely manner. Security teams worry about the security of the code being pushed. Veracode offers a solution that meets the needs of both sides. On Peerspot, where Veracode is ranked number one in application security, users discuss how Veracode enables them to build an advanced application security program.

Read Post

Veracode

Read more about Developing Secure Software With Confidence

Software Supply Chain Security for Open Source Projects - it's time to prepare!

Jun 2, 2022 By JFrog In JFrog

Attacks on the open-source value chain (OS supply chain) are becoming more sophisticated, and we, as software developers, are becoming the focus of these attacks. So what are the essential first steps, and what should you focus on? This raises the question of suitable methods and tools. At the same time, the company's strategic orientation must be considered in this security strategy. In the recent past, we have also learned that attacks are increasingly targeting individual infrastructure elements of software development, such as the classic CI/CD pipeline.

View Video

JFrog

Read more about Software Supply Chain Security for Open Source Projects - it's time to prepare!

CrowdStrike Falcon Prevents the Follina Zero-day Vulnerability

Jun 2, 2022 By CrowdStrike In CrowdStrike

In this demo we'll see the Falcon Platform identify systems vulnerable to Follina in your organization, prevent an attack of this vulnerability and show threat hunting capabilities to identify any systems that may have been targeted.

View Video

CrowdStrike

Read more about CrowdStrike Falcon Prevents the Follina Zero-day Vulnerability

Introduction to Teleport

Jun 2, 2022 By Teleport In Teleport

Want to know how Teleport’s Access Plane technology replaces VPNs, shared credentials, and legacy privileged access management technologies, improving security and engineering productivity? Learn more about Teleport’s Certificate Authority and Access Plane for your infrastructure so you can: ➢ Set up single sign-on and have one place to access your SSH servers, Kubernetes, databases, Windows desktops, and web apps.➢ Use your favorite programming language to define access policies to your infrastructure.➢ Share and record interactive sessions across all environments.

View Video

Teleport

Read more about Introduction to Teleport

Can Macs Get Ransomware? Examples + Prevention Strategies

Jun 2, 2022 By Catherine Chipeta In UpGuard

Many of the most prolific ransomware attacks to hit the news, such as Wannacry and Petya in 2017, affected PC users only. The distinct absence of Apple computers in the long list of victims has many Mac users wondering if ransomware attacks are a cyber threat they need to worry about. Can ransomware affect Macs? Short answer: Yes. While rare, security researchers have noted examples of Mac-compatible ransomware variants.

Read Post

UpGuard

Read more about Can Macs Get Ransomware? Examples + Prevention Strategies

Pillars of Amazon Web Services: Security, Identity, and Compliance

Jun 2, 2022 By Cyber Security Journal In SSL2BUY

As more and more businesses adopt cloud computing services for their operations, the threat against cloud infrastructure is also increasing. AWS, the huge cloud service provider in the market, provides many security features to secure the cloud structure and customer data. It is essential to understand the service provider’s security policy before adopting it for the business.

Read Post