Datadog

Monitor flow logs to ensure VPC security with Datadog

Sep 19, 2022 By Jordan Obey In Datadog

In part 1 of this series, we looked at the common components of an Amazon VPC including CIDR blocks, subnets, firewalls, and route tables. We also looked at approaches for how to configure those components securely.

Read Post

Datadog

Read more about Monitor flow logs to ensure VPC security with Datadog

Datadog on Web Security Standards

Jul 25, 2022 By Datadog In Datadog

Modern web applications are incredibly complex. Frameworks, javascript, and dependency management have made understanding and maintaining a baseline security standard maximum difficulty. With attack vectors like those listed in the OWASP Top 10 it can be incredibly difficult to know where to start and what the metrics for success are. Every web browser today supports a variety of "secure headers". These headers can be served as part of each response from the web server stack and can prevent a variety of common attacks. Perhaps the most impactful among these is content security policy headers or CSP.

View Video

Datadog

Read more about Datadog on Web Security Standards

Identify security vulnerabilities with DNS-based threat detection

Jul 1, 2022 By Jordan Obey In Datadog

The Domain Name System (DNS) is responsible for mapping client-facing domain names to their corresponding IP addresses, making it a fundamental element of the internet. DNS-level events provide valuable information about network traffic that can be used to identify malicious activity. For instance, monitoring DNS lookups can help you see whether a host on your network attempted to connect to a site known to contain malware.

Read Post

Datadog

Read more about Identify security vulnerabilities with DNS-based threat detection

Ensure compliance, governance, and transparency across your teams with Datadog Audit Trail

Jun 9, 2022 By Addie Beach In Datadog

In order to maintain compliance, enforce governance, and build transparency, teams across your organization need deep insight into how their users and automation interact with Datadog. For stakeholders in leadership roles, such as CIOs and CDOs, knowing what actions users took and when is essential for spotting gaps in enablement, budgeting, and reporting, as well as building a modern compliance strategy for the organization as a whole.

Read Post

Datadog

Read more about Ensure compliance, governance, and transparency across your teams with Datadog Audit Trail

The Confluence RCE vulnerability (CVE-2022-26134): Overview, detection, and remediation

Jun 7, 2022 By Eslam Salem In Datadog

On May 31, 2022, a critical vulnerability in Atlassian Confluence Server and Confluence Data Center was disclosed by Volexity. While conducting an incident response investigation involving internet-facing servers with the Confluence server installed, Volexity determined that the servers were compromised and attackers were launching successful remote code execution (RCE) exploits.

Read Post

Datadog

Read more about The Confluence RCE vulnerability (CVE-2022-26134): Overview, detection, and remediation

Monitor Content Security Policy violations with Datadog

May 23, 2022 By Jb Aviat In Datadog

Content Security Policy (CSP) is a W3C standard that helps defend web applications against cross-site scripting (XSS), clickjacking, and other code injection attacks. CSP is often deployed by using an HTTP header (or, less commonly, a element) to specify which types of resources are allowed to load on your site and where those resources can come from.

Read Post

Datadog

Read more about Monitor Content Security Policy violations with Datadog

Datadog on Detecting Threats using Network Traffic Flows

May 9, 2022 By Datadog In Datadog

At Datadog’s scale, with over 18,000 customers sending trillions of data points per day, analyzing the volume of data coming in can be challenging. One of the largest log sources internally at Datadog are networking logs. Being able to analyze and make sense of them is critical to keep Datadog secure. To help with the task, we have built a flow analysis pipeline that alerts against network level Indicators of Compromise (IOCs) like IP address, port combinations, and data exchanged.

View Video

Datadog

Read more about Datadog on Detecting Threats using Network Traffic Flows

Security Is Everyone's Job - Linux Vulnerabilities in Production Infra (Nick Davis)

May 3, 2022 By Datadog In Datadog

Security vulnerabilities can show up anywhere in production. In this talk, Nick Davis from Datadog describes an approach to improve the response to new security vulnerabilities, with specifics around the DirtyPipe vulnerability.

View Video

Datadog

Read more about Security Is Everyone's Job - Linux Vulnerabilities in Production Infra (Nick Davis)

Recapping Datadog Summit Denver 2022

May 2, 2022 By Kirk Kaiser In Datadog

After a two-year hiatus, Datadog customer summits are back. And what better place to begin in-person again than in sunny Denver, Colorado!

Read Post

Datadog

Read more about Recapping Datadog Summit Denver 2022

Detect cryptocurrency mining in your environment with Datadog Cloud SIEM

Apr 27, 2022 By Mallory Mooney In Datadog

Cryptocurrency mining (or crypto mining) can be a lucrative yet resource-intensive operation, so cyber threat actors are targeting more organizations in order to take advantage of their cloud resources for mining. Datadog Cloud SIEM can now help you monitor your cloud-based systems for unwanted crypto mining via a built-in detection rule. All you need to get started is to configure your resource logs with Datadog’s @network.client.ip standard attribute.

Read Post

Datadog

Read more about Detect cryptocurrency mining in your environment with Datadog Cloud SIEM

Subscribe to Datadog

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Datadog

Monitor flow logs to ensure VPC security with Datadog

Datadog on Web Security Standards

Identify security vulnerabilities with DNS-based threat detection

Ensure compliance, governance, and transparency across your teams with Datadog Audit Trail

The Confluence RCE vulnerability (CVE-2022-26134): Overview, detection, and remediation

Monitor Content Security Policy violations with Datadog

Datadog on Detecting Threats using Network Traffic Flows

Security Is Everyone's Job - Linux Vulnerabilities in Production Infra (Nick Davis)

Recapping Datadog Summit Denver 2022

Detect cryptocurrency mining in your environment with Datadog Cloud SIEM

Monthly Archive

Follow Us