%term

Verify Security Posture in Hybrid Multi-Cloud Environments | ONUG Fall 2022 Proof of Concept Session

Nov 15, 2022 By Forward Networks In Forward Networks

In an era when hybrid multi-cloud environments are the norm, extending the carefully architected network security policies is virtually impossible because IT teams cannot visualize their multi-cloud estate or monitor traffic behavior past the point of egress. Piecing together the cloud security posture requires combining data from multiple siloed applications.

View Video

Forward Networks

Read more about Verify Security Posture in Hybrid Multi-Cloud Environments | ONUG Fall 2022 Proof of Concept Session

Turns out 78% of reported CVEs on top DockerHub images are not really exploitable

Nov 15, 2022 By Shachar Menashe In JFrog

Similarly to our previous research on “Secrets Detection,” during the development and testing of JFrog Xray’s new “Contextual Analysis” feature, we wanted to test our detection in a large-scale real-world use case, both for eliminating bugs and testing the real-world viability of our current solution.

Read Post

JFrog

Read more about Turns out 78% of reported CVEs on top DockerHub images are not really exploitable

Top 10 Fines and Sanctions for Cybersecurity Incidents in 2022

Nov 15, 2022 By Application Security Weekly In ImmuniWeb

A data breach can be a massive headache for organizations and enterprises, as it may entail severe consequences, including decreased customer trust and substantial financial losses like recovery costs, loss of revenue and expenses due to regulatory fines for a data breach. This article highlights the biggest fines and penalties for non-compliance companies faced in 2022.

Read Post

ImmuniWeb

Read more about Top 10 Fines and Sanctions for Cybersecurity Incidents in 2022

The 443 Episode 217 - 2022 Cybersecurity Predictions Recap

Nov 15, 2022 By WatchGuard In WatchGuard

The 443 Security Simplified is a weekly podcast that gets inside the minds of leading white-hat hackers and security researchers, covering the latest cybersecurity headlines and trends.

View Video

WatchGuard

Read more about The 443 Episode 217 - 2022 Cybersecurity Predictions Recap

Modern SOC and MDR services series I: What they are, why they matter

Nov 15, 2022 By Iratxe Vazquez In WatchGuard

Inadequate cybersecurity is a severe issue that challenges SMBs and enterprises indiscriminately, putting them at risk. Reasons for the business impact include: To help businesses navigate cybersecurity risks, many delegate to internal or external security operation centers (SOC).

Read Post

WatchGuard

Read more about Modern SOC and MDR services series I: What they are, why they matter

How to secure Helm

Nov 15, 2022 By Eduardo Mínguez In Sysdig

Helm is being used broadly to deploy Kubernetes applications as it is an easy way to publish and consume them via a couple of commands, as well as integrate them in your GitOps pipeline. But is Helm secure enough? Can you trust it blindly? This post explains the benefits of using Helm, the pitfalls, and offers a few recommendations for how to secure it. Let’s get started!

Read Post

Sysdig

Read more about How to secure Helm

What are SIM swap attacks, and how can you prevent them?

Nov 15, 2022 By 1Password In 1Password

SIM swapping, also known as SIM jacking, is a technique used by attackers to gain access to a person’s phone number and, ultimately, their two-factor authentication (2FA) codes.

Read Post

1Password

Read more about What are SIM swap attacks, and how can you prevent them?

How Sysdig is Using the ThreatQ Platform to Enhance Cloud Threat Detection and Response

Nov 15, 2022 By Mike Clark In ThreatQuotient

It is always interesting to learn about real-world examples of technologies at work. So, when ThreatQuotient invited me to share how we at Sysdig are using the ThreatQ Platform to enhance our cloud detection and response solutions, I was happy to participate.

Read Post

ThreatQuotient

Read more about How Sysdig is Using the ThreatQ Platform to Enhance Cloud Threat Detection and Response

2022 Elastic Global Threat Report: Helping security leaders navigate today's threat landscape

Nov 15, 2022 By Mandy Andress In Elastic

Staying up-to-date on the current state of security and understanding the implications of today’s growing threat landscape is critical to my role as CISO at Elastic. Part of this includes closely following the latest security threat reports, highlighting trends, and offering valuable insights into methods bad actors use to compromise environments.

Read Post

Elastic

Read more about 2022 Elastic Global Threat Report: Helping security leaders navigate today's threat landscape

5 best practices for building modern access control for cloud applications

Nov 15, 2022 By Brian Clark In Snyk

Recently, I met with Or Weis — a Snyk Ambassador — to discuss access control in the cloud. Or is an entrepreneur, based in Tel Aviv, where he founded Permit.io, a solution that empowers developers to bake in permissions and access control into any product in minutes and takes away the pain of constantly rebuilding them.

Read Post

Snyk

Read more about 5 best practices for building modern access control for cloud applications

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Verify Security Posture in Hybrid Multi-Cloud Environments | ONUG Fall 2022 Proof of Concept Session

Turns out 78% of reported CVEs on top DockerHub images are not really exploitable

Top 10 Fines and Sanctions for Cybersecurity Incidents in 2022

The 443 Episode 217 - 2022 Cybersecurity Predictions Recap

Modern SOC and MDR services series I: What they are, why they matter

How to secure Helm

What are SIM swap attacks, and how can you prevent them?

How Sysdig is Using the ThreatQ Platform to Enhance Cloud Threat Detection and Response

2022 Elastic Global Threat Report: Helping security leaders navigate today's threat landscape

5 best practices for building modern access control for cloud applications

Monthly Archive

Follow Us