opsdemon

Mailchimp

Not subscribed to OpsMatters Newsletter

Latest posts

How Egnyte Achieves MySQL High Availability

May 19, 2022 By Manoj Chauhan In Egnyte

At Egnyte we store, analyze, organize, and secure billions of files and petabytes of data from millions of users. On average, we observe more than a million API requests per minute. These API requests are a mix of metadata operations and analytical queries. As we scale, we have to address challenges associated with balancing throughput for individual users and delivering an exceptional quality of service.

Read Post

Egnyte

Read more about How Egnyte Achieves MySQL High Availability

How LiveRamp used Snyk to remediate Log4Shell

May 19, 2022 By Brian Piper In Snyk

Like any company that uses web apps or enterprise software built with Java, San Francisco-based LiveRamp was concerned that it had been infected by the Log4Shell zero-day vulnerability within Log4j — the popular open source logging library.

Read Post

Snyk

Read more about How LiveRamp used Snyk to remediate Log4Shell

Demo: Unified Security Platform Overview

May 19, 2022 By WatchGuard In WatchGuard

Watch the demo of the Unified Security Platform for Managed Service Providers.

View Video

WatchGuard

Read more about Demo: Unified Security Platform Overview

Mitigating controls for cloud-native applications: Why you need them and how Calico Cloud can help

May 19, 2022 By Phil DiCorpo In Tigera

Fixing vulnerabilities can be hard—especially so for cloud-native applications. Let’s take a deeper look at why this is, and how mitigating controls can help secure your cloud-native applications.

Read Post

Tigera

Read more about Mitigating controls for cloud-native applications: Why you need them and how Calico Cloud can help

Critical Authentication Bypass Vulnerability in VMware Products - CVE-2022-22972

May 19, 2022 By Sule Tatar In Arctic Wolf

On Wednesday, May 18, 2022, VMware published an advisory (VMSA-2022-0014) to address multiple vulnerabilities, including CVE-2022-22972, an authentication bypass vulnerability affecting VMware Workspace ONE Access, Identity Manager, and vRealize Automation. This vulnerability was assigned a CVSSv3 score of 9.8, making it a critical vulnerability.

Read Post

Arctic Wolf

Read more about Critical Authentication Bypass Vulnerability in VMware Products - CVE-2022-22972

Cloud Threats Memo: Analyzing the Top 10 Initial Access Vectors

May 19, 2022 By Paolo Passeri In Netskope

A joint security advisory by the national cybersecurity agencies of the United States, Canada, New Zealand, the Netherlands, and the United Kingdom has identified the top 10 initial access vectors routinely exploited by threat actors to break into an organization.

Read Post

Netskope

Read more about Cloud Threats Memo: Analyzing the Top 10 Initial Access Vectors

What is TTP Hunting?

May 19, 2022 By Kyle Chin In UpGuard

TTP hunting is an intelligence-based type of cyber threat hunting that analyzes the latest TTP (Tactics, Techniques, and Procedures) used by hackers and cybercriminals. TTP threat hunters study the newest tools and technologies used by cybercriminals, learn how to detect new attack trends, and gather enough cyber threat intelligence so that companies can fully protect their attack surface.

Read Post

UpGuard

Read more about What is TTP Hunting?

Threat Update: AcidRain Wiper

May 19, 2022 By Splunk Threat Research Team In Splunk

The Splunk Threat Research Team has addressed a new malicious payload named AcidRain. This payload, deployed in the ongoing conflict zone of Eastern Europe, is designed to wipe modem or router devices (CPEs).

Read Post