%term

How The Dark Web Continues to Threaten Businesses

Feb 16, 2021 By SecuritySenses In SecuritySenses

The Internet is a massive space. Seven days a week, millions of web sites, files, and servers run 24 hours a day. Even so, it is just the tip of the iceberg that we surf and the visible websites that can be accessed using search engines such as Google and Yahoo. The Deep Web, which makes up approximately 90 percent of all websites, is underneath the ground. This hidden network is so massive that it is difficult to figure out at any given time how many pages or sites are currently involved.

Read Post

SecuritySenses

Read more about How The Dark Web Continues to Threaten Businesses

Vuln of the Month: CVE-2020-10148 SolarWinds Orion Authentication Bypass

Feb 16, 2021 By detectify In Detectify

Every week, our global community of hand-picked Detectify Crowdsource ethical hackers submit new vulnerabilities that we make available to our users as automated security tests. In the new series Vuln of the Month, we deep-dive into an especially interesting vulnerability that was added to our scanner in the past month. First up: CVE-2020-10148, SolarWinds Orion Authentication Bypass. In January, Detectify added a security test for CVE-2020-10148, SolarWinds Orion Authentication Bypass.

Read Post

Detectify

Read more about Vuln of the Month: CVE-2020-10148 SolarWinds Orion Authentication Bypass

Getting started with Teleport

Feb 16, 2021 By Teleport In Teleport

Getting started with Teleport.

View Video

Teleport

Read more about Getting started with Teleport

The Root of Your AWS Insecurities

Feb 16, 2021 By Jenko Hwong In Netskope

The AWS root account can do anything in your account, and it follows that it should be protected with tight security controls: However, while analyzing root account configuration and use in 915 accounts from 153 production environments over four months, we found that: We will now look at the data in more detail to understand more of the nuances and learnings, including the tradeoffs and the presumed “why’s” behind the problems.

Read Post

Netskope

Read more about The Root of Your AWS Insecurities

Preventing CSRF Attacks

Feb 16, 2021 By Veracode In Veracode

Cross-site request forgery (CSRF, sometimes pronounced “sea surf” and not to be confused with cross-site scripting) is a simple yet invasive malicious exploit of a website. It involves a cyberattacker adding a button or link to a suspicious website that makes a request to another site you’re authenticated on.

Read Post

Veracode

Read more about Preventing CSRF Attacks

Run a search with selected columns only

Feb 16, 2021 By Devo In Devo

Table of Contents:

00:00 - Introduction
00:49 - Using Finders - Learn more on https://bit.ly/3tXaCTD
01:31 - Using Free Text Query - Learn more on https://bit.ly/3jQpcaS
02:02 - Modify column selection
02:45 - Unrevealed columns (Extra) - Learn more on https://bit.ly/2OI6abb

View Video

Devo

Read more about Run a search with selected columns only

Industry-First Pay-as-you-go SaaS Platform for Kubernetes Security and Observability

Feb 16, 2021 By Amit Gupta In Tigera

We are excited to introduce Calico Cloud, a pay-as-you-go SaaS platform for Kubernetes security and observability. With Calico Cloud, users only pay for services consumed and are billed monthly, getting immediate value without upfront investment.

Read Post

Tigera

Read more about Industry-First Pay-as-you-go SaaS Platform for Kubernetes Security and Observability

Evaluating MySQL Recursive CTE at Scale

Feb 16, 2021 By Ramakrishnan Sundararaj In Egnyte

Egnyte is a unified platform to securely govern content everywhere. We manage billions of files and petabytes of content. One of the core infrastructure components powering such a scale is called MDB or metadata database. It is a cluster of hundreds of MySQL instances storing billions of metadata records. It stores information about files, versions, folders, custom metadata, and their relationships.

Read Post

Egnyte

Read more about Evaluating MySQL Recursive CTE at Scale

Creating a Fraud Risk Scoring Model Leveraging Data Pipelines and Machine Learning with Splunk

Feb 16, 2021 By Lucas Alados In Splunk

According to the Association of Certified Fraud Examiners, the money lost by businesses to fraudsters amounts to over $3.5 trillion each year. The ACFE's 2016 Report to the Nations on Occupational Fraud and Abuse states that proactive data monitoring and analysis is among the most effective anti-fraud controls.

Read Post

Splunk

Read more about Creating a Fraud Risk Scoring Model Leveraging Data Pipelines and Machine Learning with Splunk

SASE | The future of secure networking in the cloud

Feb 16, 2021 By Xalient In Xalient

As new operating models emerge. As workloads and applications shift rapidly to the cloud. Secure networking becomes the new imperative. Forward-thinking CIOs are turning to SASE.

View Video

Xalient

Read more about SASE | The future of secure networking in the cloud

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

How The Dark Web Continues to Threaten Businesses

Vuln of the Month: CVE-2020-10148 SolarWinds Orion Authentication Bypass

Getting started with Teleport

The Root of Your AWS Insecurities

Preventing CSRF Attacks

Run a search with selected columns only

Industry-First Pay-as-you-go SaaS Platform for Kubernetes Security and Observability

Evaluating MySQL Recursive CTE at Scale

Creating a Fraud Risk Scoring Model Leveraging Data Pipelines and Machine Learning with Splunk

SASE | The future of secure networking in the cloud

Monthly Archive

Follow Us