Technology

CrowdStrike Expands CNAPP Capabilities with Introduction of CIEM to Monitor, Discover and Secure Identities Across Multi-Cloud Environments

Sep 20, 2022 By CrowdStrike In CrowdStrike

CrowdStrike Cloud Security is also now integrated with CrowdStrike Asset Graph to provide rich cloud asset visualizations and unprecedented visibility of cloud resources.

Read Post

CrowdStrike

Read more about CrowdStrike Expands CNAPP Capabilities with Introduction of CIEM to Monitor, Discover and Secure Identities Across Multi-Cloud Environments

7 Best Encrypted Email Services to Protect Yourself With In 2022

Sep 20, 2022 By Joe Tobin In Internxt

Most successful hacks and data breaches are perpetrated through email. In a perfect world, everyone would find safer methods for communication, but since email isn't going anywhere anytime soon, encrypted email is our best option. Since Internxt doesn't have its own encrypted email yet, we've assembled a list of the best encrypted email services you should use in the meantime.

Read Post

Internxt

Read more about 7 Best Encrypted Email Services to Protect Yourself With In 2022

NAA Creating Dashboard Filters

Sep 20, 2022 By Netskope In Netskope

Netskope, a global cybersecurity leader, is redefining cloud, data, and network security to help organizations apply Zero Trust principles to protect data. The Netskope Intelligent Security Service Edge (SSE) platform is fast, easy to use, and secures people, devices, and data anywhere they go. Netskope helps customers reduce risk, accelerate performance, and get unrivaled visibility into any cloud, web, and private application activity. Thousands of customers, including more than 25 of the Fortune 100, trust Netskope and its powerful NewEdge network to address evolving threats, new risks, technology shifts, organizational and network changes, and new regulatory requirements.

View Video

Netskope

Read more about NAA Creating Dashboard Filters

Protect Sensitive Data When Working With Partners and Contractors

Sep 20, 2022 By Lookout In Lookout

The Lookout security platform allows users to successfully collaborate with partners and vendors while keeping confidential information secure. With data loss prevention and dynamic digital rights management, users can securely collaborate with tools like Microsoft Teams, Slack, and email.

View Video

Lookout

Read more about Protect Sensitive Data When Working With Partners and Contractors

How to create a Tines Tunnel with an AWS EC2 instance

Sep 20, 2022 By Troy Wegner In Tines

Today's business world is more complex than ever, and many companies are reliant on private networks to keep their data safe and secure. But what happens when you need to access data from a remote location or connect to multiple separate private environments? In this guide, we'll show you how to create a Tines Tunnel so you can route traffic from Tines to a private API/network successfully. Read on for step-by-step instructions.

Read Post

Tines

Read more about How to create a Tines Tunnel with an AWS EC2 instance

Monitor flow logs to ensure VPC security with Datadog

Sep 19, 2022 By Jordan Obey In Datadog

In part 1 of this series, we looked at the common components of an Amazon VPC including CIDR blocks, subnets, firewalls, and route tables. We also looked at approaches for how to configure those components securely.

Read Post

Datadog

Read more about Monitor flow logs to ensure VPC security with Datadog

Best practices for securely configuring Amazon VPC

Sep 19, 2022 By Jordan Obey In Datadog

Amazon Virtual Private Cloud (Amazon VPC) is an AWS service that enables you to launch AWS resources within your own virtual network. Because you can deploy VPCs in separate regions and other VPC components themselves are deployable across different Availability Zones, VPC-hosted environments tend to be highly available and more secure.

Read Post

Datadog

Read more about Best practices for securely configuring Amazon VPC

Directory Sharing in a Web-Based RDP Client Using the File System Access API

Sep 19, 2022 By Isaiah Becker-Mayer In Teleport

Remote Desktop Protocol (RDP) is a protocol developed by Microsoft which at its core is designed to give users a graphical interface to a remote Windows computer over a network connection. The remote Windows machine runs an RDP server, while the local computer accessing it runs an RDP client. Windows comes bundled with Microsoft's Remote Desktop Connection to easily access Windows hosts over RDP.

Read Post

Teleport

Read more about Directory Sharing in a Web-Based RDP Client Using the File System Access API

CVE-2022-3172 - kube-apiserver can allow an aggregated API server to redirect client traffic to any URL

Sep 19, 2022 By Ben Hirschberg In ARMO

A new vulnerability was reported on Sep 16th in kube-apiserver that allows an aggregated API server to redirect client traffic to any URL. As a result, the client may perform unexpected actions and share the API server credentials with third parties. The aggregated API server extension in Kubernetes API server enables users to extend API server with alternative objects and paths.

Read Post

ARMO

Read more about CVE-2022-3172 - kube-apiserver can allow an aggregated API server to redirect client traffic to any URL

Threat news: TeamTNT targeting misconfigured kubelet

Sep 19, 2022 By Alberto Pellitteri In Sysdig

TeamTNT is a prevalent threat actor who has been targeting cloud and virtual environments such as Kubernetes and Docker since at least late 2019. This threat actor is financially motivated, focusing their efforts on stealing credentials and cryptomining. In 2020, we analyzed their use of Weave Scope on an unsecured Docker API endpoint exposed to the internet. In December 2021, we attributed an attack to TeamTNT in which they targeted a vulnerable WordPress pod to steal AWS credentials.

Read Post