Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Snyk

Installing multiple Snyk Kubernetes controllers into a single Kubernetes cluster

Aug 15, 2022 By Pas Apicella In Snyk

Kubernetes provides an interface to run distributed systems smoothly. It takes care of scaling and failover for your applications, provides deployment patterns, and more. Regarding security, it’s the teams deploying workloads onto the Kubernetes cluster that have to consider which workloads they want to monitor for their application security requirements.

Read Post
lookout

Stay Vigilant: How Cloud Interconnectivity Is Amplifying the Effects of Phishing

Aug 15, 2022 By Hank Schless In Lookout

It seems like every week another household brand announces that they’ve been the victim of a data breach. Recently, cloud communications company Twilio announced that its internal systems were breached after attackers obtained employee credentials using an SMS phishing attack. Around the same time, Cloudflare, a content delivery network and DDoS mitigation company, reported that its employees were also targeted but their systems were not compromised.

Read Post

Black Hat 2022: The CVSS Fallacy - can you trust the world's most popular vulnerability metric?

Aug 15, 2022 By JFrog In JFrog
The NVD defines one of the usages of CVSS as “a factor in prioritization of vulnerability remediation” and it is the current de-facto vulnerability metric, often seen as infallible guidance and a crucial element in many compliance processes. In our session we will go over real-world CVE examples, demonstrating cases and entire categories where CVSSv3.1 falls short of providing an accurate assessment, both due to its design and its various mishandlings. The session will also touch upon specific indicators in the CVE description that can raise the confidence in a CVSS score, and vice versa.
View Video

Changing Your Passwords

Aug 15, 2022 By Keeper In Keeper
Long, randomly generated passwords that are created for each of your logins helps to protect your accounts from cybertheft and account takeover. Keeper’s Password Generator can create and securely store a strong, unique password for each of your sites and apps with the click of the dice. Be sure to refer to a website’s password requirements when creating a new password. You can adjust a password's characters to meet a site’s unique requirements by dragging the slide bar left and right and utilizing the character type check boxes.
View Video

Untangle the Secrets of your JavaScript Dependencies

Aug 15, 2022 By Snyk In Snyk
In an ecosystem with an increasing number of dependencies, maintainers and supply chain attacks, discover an open source tool designed to analyze in depth the dependencies of a given remote package or local manifest. Not knowing what’s in the node_modules directory is a bad dream from the past. Dive in with me to find out the secrets that your dependencies hide from you.
View Video
upguard

Making the Vendor Questionnaire Process More Efficient (in 2022)

Aug 15, 2022 By Edward Kost In UpGuard

Vendor security questionnaires are frustrating, both to the organizations sending them and the vendors receiving them. While these frustrations remain unaddressed, they will only continue to impede the efficiency of vendor risk management programs. Fortunately, suffering through security assessments isn’t an unavoidable by-product of a Vendor Risk Management program. With the correct strategies, you can streamline the entire assessment questionnaire lifecycle. Read on to learn how.

Read Post
upguard

Compliance Guide: NIST CSF and the Healthcare Industry

Aug 15, 2022 By Catherine Chipeta In UpGuard

Today’s threat landscape is driven by digital transformation and the outsourcing of critical operations to third-party vendors. Cybercriminals’ high demand for sensitive data paired with a historical lack of cybersecurity investment across the industry is cause for concern. Healthcare organizations recognize they have the choice to either increase their cyber spending or inevitably fall victim to a costly data breach. However, investing in cybersecurity solutions alone isn’t enough.

Read Post

Copyright © 2026 OpsMatters™. All rights reserved.