Mailchimp
Not subscribed to OpsMatters Newsletter
Security | Threat Detection | Cyberattacks | DevSecOps | Compliance
The Latest Cybersecurity News & Insights From Around The World
Latest posts
Lift Your Spirits With Splunk SOAR
Halloween is just around the corner and we’re looking forward to trick-or-treating, donning our best costumes, and watching movies. A few of my favorite movies that I watch around Halloween time remind me of our most recent Splunk SOAR updates. Is that a stretch? Possibly. But hey it’s Halloween, let’s have some fun and I’ll try to make it as humerus as possible 💀
Supply Chain Shock: Realities About the Security of the Software Supply Chain
News reports on attacks on the “supply chain” are becoming an almost every-day occurrence. First there was SolarWinds, then Kayesa, followed by countless other large and small supply chain attacks. Global businesses, economies, and lives are intricately connected to each other through applications and the internet. When critical systems are attacked and operations are affected, the downstream problems quickly become apparent.
Sysdig: Enforcing Least Privilege Access in AWS Cloud Infrastructure with CIEM
Organizations often grant overly permissive privileges to users and services that are often unused. This level of access exposes you, enabling adversaries to hack into the cloud and perform malicious activity. Deep visibility across all cloud entitlements and permissions, as well as a Zero Trust approach to managing cloud permissions with least privilege access are key elements of your cloud security strategy.
Sysdig: Scale up Threat Detection, Scale Down False Positives in the Cloud
The cloud vendors offer hundreds of cloud services your team may be using. How can you identify threats across these services without drowning in a sea of alerts? Visibility across all services is a first step, combined with a highly tuned detection engine. A small number of attack patterns are present in most breaches. For example, lateral movement is estimated to be present in 70% of cyberattacks. Cloud native intrusion detection provides a unified view across containers and clouds that allows these attack patterns to be flagged for investigation.
Sysdig: Streamline the Endpoint Detection and Response (EDR) Workflow for Containers
Cybercriminals are thriving in the complexity and increased attack surface of cloud-native and Kubernetes environments. SOC teams must reduce their mean time to respond (MTTR) when incidents occur, but how? Inability to see through evasion techniques, the ephemeral nature of containers and limited cloud native context all result in security teams spending too much time investigating, rather than responding, to indicators of compromise (IoC).
Tessian Integrates With Okta to Protect Enterprises From Threats Posed by Employees' Identities and Behaviors
Tessian today announces that it is integrating with Okta to help organizations protect against the biggest threats to enterprise security - people's identities and behaviors.
Snyk Security Horror Story with Andrew Betts
Andrew Betts shares his security horror story of how the Financial Times was hacked by the Syrian Electronic Army.
Code similarity analysis with r2diaphora
Binary diffing, a technique for comparing binaries, can be a powerful tool to facilitate malware analysis and perform malware family attribution. This blog post describes how AT&T Alien Labs is leveraging binary diffing and code analysis to reduce reverse-engineering time and generate threat intelligence.
Cloud Infrastructure Entitlements Management (CIEM) with Sysdig Secure
Discover what CIEM Security is and how easy it is to implement with Sysdig Secure for cloud. Over-permissioned accounts and roles is the most common cloud service misconfiguration security problem. Implementing least privilege is a crucial best practice to avoid or mitigate risks of data breaches and contain privilege escalation and lateral movement.