Technology

New Phishing Attacks Exploiting OAuth Authentication Flows (Part 3)

Aug 12, 2021 By Jenko Hwong In Netskope

This blog series expands upon a presentation given at DEF CON 29 on August 7, 2021. In Part 1 of this series, we provided an overview of OAuth 2.0 and two of its authorization flows, the authorization code grant and the device authorization grant. In Part 2 of this series, we described how a phishing attack could be carried out by exploiting the device authorization grant flow.

Read Post

Netskope

Read more about New Phishing Attacks Exploiting OAuth Authentication Flows (Part 3)

Securing IoMT devices to protect the future of Healthcare from rising attacks

Aug 12, 2021 By Theodoros Karasavvas In AT&T Cybersecurity

The number of cybersecurity incidents reported within the healthcare industry has been steadily increasing since 2015 as the use of IoMT has become more widespread. With increasing numbers of IoMT devices being used for patient care, the attack surface among hospitals and doctors’ offices has grown dramatically as medical technology continues to expand.

Read Post

AT&T Cybersecurity

Read more about Securing IoMT devices to protect the future of Healthcare from rising attacks

Westcon-Comstor to distribute Zscaler in UK&I, Germany, Switzerland and France

Aug 11, 2021 By Westcon-Comstor

New relationship is set to increase Westcon-Comstor's value to channel partners by bolstering its Zero Trust capability.

Read Post

Read more about Westcon-Comstor to distribute Zscaler in UK&I, Germany, Switzerland and France

Setting up Teleport Database Access with Amazon Aurora MySQL

Aug 11, 2021 By Teleport In Teleport

Setting up Teleport Database Access with Amazon Aurora MySQL.

View Video

Teleport

Read more about Setting up Teleport Database Access with Amazon Aurora MySQL

Snyk named #39 on 2021 Forbes Cloud 100 list

Aug 11, 2021 By Jeff Yoshimura In Snyk

We’re honored to share that, for the second consecutive year, Snyk has been named to the prestigious Forbes Cloud 100 List, coming in at #39! The full list, unveiled yesterday, is Forbes’ “definitive ranking of the best, brightest, and most valuable private companies in the cloud.” We’re up 47 spots from our ranking last year — a testament to our incredible team, growth, and maturation as a company in 2021 thus far. And it’s only August!

Read Post

Snyk

Read more about Snyk named #39 on 2021 Forbes Cloud 100 list

Appknox & Xoxoday Webinar On Building an Org Wide Software Security Practice

Aug 11, 2021 By Appknox In Appknox

A security-first strategy is a competitive business advantage in today's world. Know how Fortune 500's have created superior and secure digital experiences for their customers.

View Video

Appknox

Read more about Appknox & Xoxoday Webinar On Building an Org Wide Software Security Practice

Key Insights into Gartner Hype Cycle for Application Security 2021

Aug 11, 2021 By Harshit Agarwal In Appknox

Gartner Hype Cycle started as a graphical representation method to represent the adoption, evolution, and maturity of new emerging technologies. Over time, it has now transformed into a highly potent and reliable powerhouse of smart insights into how emerging technologies will evolve in the future.

Read Post

Appknox

Read more about Key Insights into Gartner Hype Cycle for Application Security 2021

Splunk Mobile - Backend Summary (in 60s)

Aug 10, 2021 By Splunk In Splunk

Get to know the Secure Gateway Splunk app, which allows you to deploy and manage your fleet of mobile devices at scale. Plus, take a peek behind the scenes to learn how Splunk Secure Gateway facilitates communication between mobile devices and Splunk platform instances using an end-to-end encrypted cloud service called Spacebridge. Finally, get the latest on Spacebridge compliance and data privacy, since Spacebridge has now been certified to meet SOC2, Type 2 and ISO 27001 standards and is HIPAA and PCI-DSS compliant.

View Video

Splunk

Read more about Splunk Mobile - Backend Summary (in 60s)

Achieving SOC2 Compliance for Teleport Cloud with Teleport On-Prem

Aug 10, 2021 By Travis Gary In Teleport

Teleport has been instrumental in helping our clients achieve difficult security and compliance requirements, and today we are proud to announce that our Cloud offering is now SOC2 Type II compliant. Last year our on-premises product was SOC2 Type II certified, and we published an overview on our blog helping explain what SOC2 is and why it has become table stakes for B2B SaaS companies.

Read Post

Teleport

Read more about Achieving SOC2 Compliance for Teleport Cloud with Teleport On-Prem

New Phishing Attacks Exploiting OAuth Authentication Flows (Part 2)

Aug 10, 2021 By Jenko Hwong In Netskope

This blog series expands upon a presentation given at DEF CON 29 on August 7, 2021. In Part 1 of this series, we provided an overview of OAuth 2.0 and two of its authorization flows, the authorization code grant and the device authorization grant.

Read Post