Technology

A CISO's View of SASE

Mar 9, 2021 By David Fairman In Netskope

Traditional security programs were predicated on protecting the typically internally hosted technology infrastructure and the data within that environment. This led to an ecosystem composed of numerous discrete tools and processes all intended to detect adversaries and prevent harm. It included a multitude of controls spanning network and infrastructure security, application security, access control, and process controls.

Read Post

Netskope

Read more about A CISO's View of SASE

Zero Trust Model for Cloud Security

Mar 8, 2021 By Octiga In Octiga

(Guest Blog) For decades, companies have relied on perimeter protection solutions to restrict their digital resources. These included passwords to authenticate users, intrusion detection systems and firewalls. With time, passwords became inadequate in preventing unauthorized access, and most shifted to two-factor authentication systems like one-time SMS codes or tokens. This change significantly enhanced security, but the approach only focused on securing the perimeter.

Read Post

Octiga

Read more about Zero Trust Model for Cloud Security

Teleport Compared to AWS SSM Session Manager

Mar 8, 2021 By Ev Kontsevoy In Teleport

Amazon’s AWS Systems Manager, better known as SSM to long-time AWS users, was announced at the end of 2017, replacing the similarly named EC2 Systems Manager that had launched a year prior. Similar to other AWS products, System Manager provides a broad spectrum of features instead of a focused and opinionated product.

Read Post

Teleport

Read more about Teleport Compared to AWS SSM Session Manager

Securing Open Source Libraries

Mar 8, 2021 By Snyk

This book will help both development and application security architects and practitioners address the risk of vulnerable open source libraries and discuss why such vulnerable dependencies are the most likely to be exploited by attackers.

Get EBook

Snyk

Read more about Securing Open Source Libraries

Mapping Built-in AWS Compliance Rules Provided by the Well-Architected Tool | Datadog Tips & Tricks

Mar 5, 2021 By Datadog In Datadog

In this video, you’ll learn how to use Datadog to help improve your overall compliance posture for all 5 pillars of the AWS Well-Architected Framework.

View Video

Datadog

Read more about Mapping Built-in AWS Compliance Rules Provided by the Well-Architected Tool | Datadog Tips & Tricks

Stranger Danger Live Hacking Session | Cloud Native Application Security

Mar 5, 2021 By Snyk In Snyk

Snyk helps software-driven businesses develop fast and stay secure. Continuously find and fix vulnerabilities for npm, Maven, NuGet, RubyGems, PyPI and more.

View Video

Snyk

Read more about Stranger Danger Live Hacking Session | Cloud Native Application Security

In Search For a Perfect Access Control System

Mar 4, 2021 By Alexander Klizhentas In Teleport

Every cloud has its own identity and access management system. AWS and Google use a bunch of JSON files specifying various rules. Open source projects like Kubernetes support three concurrent access control models - attribute-based, role-based and a webhook access control, all expressed using YAML. Some teams are going as far as inventing their own programming language to solve this evergreen problem.

Read Post

Teleport

Read more about In Search For a Perfect Access Control System

Cloud Threats Memo: Protecting Against Hancitor Distributed Through Malicious Office Documents

Mar 4, 2021 By Paolo Passeri In Netskope

Hancitor (AKA CHanitor, Tordal) is a popular macro-based malware distributed via malicious Office documents delivered through malspam. In the latest campaigns, particularly active between October and December 2020, the malware has been distributed via DocuSign-themed emails asking the victims to review and sign a document. The fake DocuSign link downloads a Microsoft Word document whose malicious macro, once enabled, installs the Hancitor malware.

Read Post

Netskope

Read more about Cloud Threats Memo: Protecting Against Hancitor Distributed Through Malicious Office Documents

Using Teleport to Audit Postgres and MySQL Database Access

Mar 4, 2021 By Teleport In Teleport

0:00 Introduction
0:26 Deployment Overview
1:31 Why use Teleport?
2:05 tsh setup
3:37 psql demo
4:25 Teleport Audit log
5:21 fleund Overview
6:01 Kibana Demo
6:35 Learn more at https://goteleport.com/database-access/

#postgres #mysql #teleport

View Video

Teleport

Read more about Using Teleport to Audit Postgres and MySQL Database Access

Intuit: Dev-First Cloud Native Application Security

Mar 4, 2021 By Snyk In Snyk

Snyk helps software-driven businesses develop fast and stay secure. Continuously find and fix vulnerabilities for npm, Maven, NuGet, RubyGems, PyPI and more.

View Video