Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Improper Authorization in Confluence Data Center and Server (CVE-2023-22518)

In early November, the cybersecurity community witnessed the exploitation of a zero-day vulnerability in Confluence Data Center and Server. This critical vulnerability was related to Improper Authorization and assigned CVE-2023-22518 identifier. In this blog, we delve into the details of these vulnerabilities, their implications, and the necessary mitigation steps to protect your digital assets.

How to Improve Your Cloud Security with AWS

The cloud offers major benefits to organizations, helping increase business agility, better serve their customers’ needs, and cut their costs. This is why the typical modern business now uses public, infrastructure-as-a-service (IaaS) cloud platforms for its major business and organizational functions. However, the cloud also introduces new risks that can increase your costs should you fall victim to a breach.

SaaS Analytic and Security Firm Sumo Logic Defends Against AWS Breach

Cloud-native and analytic solutions provider Sumo Logic has announced a cybersecurity incident stemming from a compromised AWS account. Sumo’s clients come from various industries, including airlines and video game franchises. On November 7th, they posted a breach notice to their website; they stopped the attack before the data could be unencrypted.

Cloud Native Security: Strategies, 4 C's, and Astra Security

Cloud-native services are increasingly relied on for building and running applications rather than having on-premise data centers. This is because it is more economical in terms of security, maintenance, and capacity. Cloud-native security is an important consideration for users since the protection of the codes, applications, and customers’ data is heavily dependent on it.

Busting 6 Myths About Mobile Device Security

These days, mobile devices are integral to the way we work, and many employees spend their days switching between their phones and their computers. While most organizations have a robust cybersecurity strategy in place to protect their laptops and corporate networks, mobile devices are often left underprotected. And that’s a big problem because mobile devices are frequently faced with risks like phishing attacks and operating system vulnerabilities.

Less than half of UK businesses have strong visibility into security risks facing their organisation

Vanta State of Trust report reveals only 9% of the average UK company's IT budget is dedicated to security despite rising risk of cyber attacks. 78% of UK leaders already using AI/ML in some capacity to detect security risks but nearly 6 in 10 say regulation would increase investment.

Mitigating deepfake threats in the corporate world: A forensic approach

In an era where technology advances at breakneck speed, the corporate world finds itself facing an evolving and insidious threat: deepfakes. These synthetic media creations, powered by artificial intelligence (AI) algorithms, can convincingly manipulate audio, video, and even text - posing significant risks to businesses, their reputation, and their security. To safeguard against this emerging menace, a forensic approach is essential.

Handle secrets like API keys securely in javascript projects with environment variables

In this video we look at how to effectively use the dotenv npm package to securely use secrets like API keys by loading them into your project as environment variables. To do this we first place our secrets in a.env file and the dotenv project will load these in as env variables.

Announcing Ruby - your new Generative AI companion for Data Security

Say hello to Ruby, your new Generative AI companion for the Rubrik Security Cloud. Ruby is designed to simplify and automate cyber detection and recovery, something that IT and Security teams struggle with as cyber incidents are getting wildly frequent and the attacks are evolving quickly. A study by Rubrik Zero Labs revealed that 99% of IT and Security leaders were made aware of at least one incident, on average of once per week, in 2022.