%term

What we can learn from the most alarming 2021 breaches so far

Jun 9, 2021 By Dr. Christine Izuakor In Veriato

The escalation in cybersecurity breaches as seen in 2020 has continued well into 2021. According to Verizon’s 2021 DBIR , so far they have looked into 29,207 incidents worldwide. These incidents boiled down to 5,258 confirmed data breaches. An analysis of these breaches shows: Many of these breaches were financially motivated, targeting sensitive data that can be easily monetized and lucratively too. Human negligence, consistent with previous years, was the biggest threat to security.

Read Post

Veriato

Read more about What we can learn from the most alarming 2021 breaches so far

Snyk Builds Security into AWS CodePipeline to Mitigate Open Source Risk for Developer and Security Teams

Jun 8, 2021 By Snyk In Snyk

Latest integration inside the AWS CodePipeline console builds upon continued collaboration to deliver Snyk products within the AWS DevOps segment, AWS Marketplace, and AWS GovCloud.

Read Post

Snyk

Read more about Snyk Builds Security into AWS CodePipeline to Mitigate Open Source Risk for Developer and Security Teams

Automate vulnerability scanning in AWS CodePipeline with Snyk

Jun 8, 2021 By Jay Yeras In Snyk

Empowering developers to build securely has always been Snyk’s mission. We enable you to find and fix security vulnerabilities in your code and open source dependencies, as well as enable development teams to easily integrate security testing as part of their automated delivery pipelines. Snyk also provides native integrations with leading CI/CD platforms such as Jenkins, TeamCity, and CircleCI. To this end, we are happy to announce Snyk’s latest integration with AWS CodePipeline.

Read Post

Snyk

Read more about Automate vulnerability scanning in AWS CodePipeline with Snyk

Magic in Cybersecurity: Magic links to replace the password

Jun 8, 2021 By Irfan Shakeel In AT&T Cybersecurity

These days, magic links are in the air. They are becoming an intriguing means to strengthen digital security without inconveniencing users. This article discusses magic links, their magical function, and their potential benefits for a corporation.

Read Post

AT&T Cybersecurity

Read more about Magic in Cybersecurity: Magic links to replace the password

A Team-Centric View of Security with Snyk and CloudBees

Jun 8, 2021 By Snyk In Snyk

How does a team-centric collaboration focus change how a team maintains the security of the code? In this fireside chat, Patrick Debois, Snyk Labs Researcher, joins Anders Wallgren, Vice President of Technology Strategy at CloudBees. to explore this theme. They discuss what's new and changing with application security and what have we learned from DevOps that organizations can and should apply to DevSecOps.

View Video

Snyk

Read more about A Team-Centric View of Security with Snyk and CloudBees

Digital Identity Update: Digital Identity Wallet to build a secure and seamless onboarding system for EU

Jun 8, 2021 By Ayesha Kapoor In IDcentral

From ordering groceries to paying taxes everything has taken a shift to digital platforms. If you are still not going digital, you are putting your survival at stake. With the spur in digitization, digital identification has become ‘fundamental’ to the everyday operation of online services, but a universally recognized and secure solution has been lacking ever since.

Read Post

IDcentral

Read more about Digital Identity Update: Digital Identity Wallet to build a secure and seamless onboarding system for EU

I can use VS Code to hack into your development environment

Jun 8, 2021 By Snyk In Snyk

We have been witnessing an ever-growing amount of supply chain security incidents in the wild. And now, those incidents are starting to extend to the place where developers spend most of their time: their integrated development environment, and specifically the Visual Studio Code IDE. Recently, Snyk has discovered and disclosed vulnerabilities that pose a real and imminent threat to developers who use these extensions. The potential compromise is so significantly severe that a remote code execution on a developer’s machine is possible by simply tricking the developer to click a link.

View Video

Snyk

Read more about I can use VS Code to hack into your development environment

JBS Ransomware Attack Started in March and Much Larger in Scope than Previously Identified

Jun 8, 2021 By Ryan Sherstobitoff In SecurityScorecard

SecurityScorecard also found that 1 in 5 of the world’s food processing, production, and distribution companies rated have a known vulnerability in their exposed Internet assets

Read Post

SecurityScorecard

Read more about JBS Ransomware Attack Started in March and Much Larger in Scope than Previously Identified

See how to Amplify your SIEM by Integrating with the ThreatQ Platform

Jun 8, 2021 By Liz Bush In ThreatQuotient

SIEMs have been around for decades, designed to replace manual log correlation to identify suspicious network activity by normalizing alerts across multiple technology vendors. SIEMs correlate massive amounts of data from the sensor grid (your internal security solutions, mission-critical applications and IT infrastructure). As organizations are looking at ways to mine through SIEM data to find threats and breaches, they are bringing in threat intelligence feeds to help.

Read Post