Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Security

kondukto

Google Cloud affected by CVE-2021-30476

May 13, 2024 By Kondukto Security Team In Kondukto
CVE-2021-30476 affects HashiCorp's Terraform Vault Provider and involves incorrect configuration of bound labels for GCP (Google Cloud Platform) authentication. This issue permits unauthorized users to potentially bypass authentication mechanisms. The vulnerability stems from the Vault provider not correctly configuring the bound labels within the GCP authentication method, which could lead to improper access control.
Read Post
memcyco

User Access Review Template (with download)

May 13, 2024 By Sheena Kretzmer In Memcyco
“Your entire company network was compromised, all through a single login.” That’s the reality of an employee single sign-on (SSO) breach nightmare. Hackers create fake SSO login pages in order to steal employee credentials, which can literally give them “the keys to the kingdom” – access to the most sensitive data of the organization. From a disgruntled ex-employee to a compromised user, it can become a devastating security hole. It happens more than you think.
Read Post

Improve Data Governance with DSPM Classification

May 13, 2024 By Lookout In Lookout
Businesses struggle to find and protect sensitive data scattered across various sources. Manual tagging for classification is error-prone and inconsistent. Data Security Posture Management (DSPM) automates discovery, classification, and remediation – finding sensitive data, applying consistent tags, and fixing past mistakes. This ensures efficient and accurate data security, especially with ever-growing data volumes.
View Video
egnyte

Why Companies Don't Archive (Common Challenges and Pitfalls in TMF Archival)

May 13, 2024 By Leah Weitz In Egnyte
Failure to archive a completed Trial Master File (TMF) is, to put it simply, non-compliant. Despite this fact, pharmaceutical and biotech companies are often known to drag their feet on this process. Why would such organizations expose themselves to that risk? Unfortunately, there are several common hurdles that teams face when it comes to TMF archival. In this post, we’ll walk through what those hurdles are and how to overcome them.
Read Post

Secure Collaboration with DSPM Access Controls

May 13, 2024 By Lookout In Lookout
Cloud storage is convenient but misconfigured access can expose data. Data Security Posture Management (DSPM) finds publicly accessible files and folders, fixing them to prevent leaks. It also tackles hidden risks in folder sharing by detecting sensitive information and preventing accidental oversharing. By automatically fixing these issues, DSPM keeps your cloud data secure while enabling collaboration.
View Video

One Identity chosen as a leading IGA vendor for SAP transition

May 13, 2024 By One Identity In One Identity
Larry Chinski, One Identity VP of Corporate Strategy, announces that One Identity was chosen as a leading vendor for SAP’s IGA customers, following SAP’s announcement of the end-of-life for SAP Identity Manager. One Identity Manager was selected as the IGA replacement solution for SAP customers due to its well-established market presence and robust SAP solutions support.
View Video

Protect Data-at-Rest with DSPM Encryption

May 13, 2024 By Lookout In Lookout
Data breaches threaten valuable info like PII and financial records. Data Security Posture Management (DSPM) with AI helps you find sensitive data and secure it. Encryption scrambles data using keys you can customize. DSPM automates encryption and enforces data protection policies to keep your information safe.
View Video
Subscribe to Security

Copyright © 2024 OpsMatters™. All rights reserved.