Security

How Patching Thwarts Cyber Attackers

Nov 16, 2022 By SecurityScorecard In SecurityScorecard

At SecurityScorecard, we analyzed open vulnerabilities across the entire Internet. Here are some of our shocking discoveries: Furthermore, on average, it takes these organizations a year to fix 50% of the vulnerabilities. That's why hackers often have the upper hand. Solution? Build a mature program that: Got questions? Let me know in the comments below. SecurityScorecard is the global leader in cybersecurity ratings and the only service with over 12 million companies continuously rated. The company is headquartered in New York and operates in 64 countries around the globe.

View Video

SecurityScorecard

Read more about How Patching Thwarts Cyber Attackers

Demo: Upgrading a Firebox

Nov 16, 2022 By WatchGuard In WatchGuard

Because smaller companies are generally less protected and easier to break into, small business has become the new "big target" for cyberattacks. The Firebox M390 firewall is specifically engineered to defend all types of small businesses against attacks that are no less fierce than those targeting larger organizations. In this video, we show just how simple it is to upgrade your firewalls to the M390 with the optional Total Security Suite.

View Video

WatchGuard

Read more about Demo: Upgrading a Firebox

AlgoSec CEO, Yuval Baron Interview: it-sa 2022

Nov 16, 2022 By AlgoSec In AlgoSec

Yuval Baron, AlgoSec CEO, explains why it's so critical for organizations to secure application connectivity and shares his unwavering passion for customer satisfaction.

View Video

AlgoSec

Read more about AlgoSec CEO, Yuval Baron Interview: it-sa 2022

PyPi Malware Stealing Discord and Roblox Payment Info

Nov 16, 2022 By Snyk In Snyk

In this livestream we dive into the latest set of malicious packages discovered by the Snyk security research team. We are joined by senior security researcher at Snyk Raul Onitza-Klugman as we also discuss how these findings came to be, what they mean for open source security, and some hypotheses about the future of supply chain security. Didn't catch the live stream? Ask all of your Snyk questions and we’ll do our very best to answer them in the comment section.

View Video

Snyk

Read more about PyPi Malware Stealing Discord and Roblox Payment Info

Stranger Danger: Your JavaScript Attack Surface Just Got Bigger

Nov 16, 2022 By Snyk In Snyk

Building JavaScript applications today means that we take a step further from writing code. We use open-source dependencies, create a Dockerfile to deploy containers to the cloud, and orchestrate this infrastructure with Kubernetes. Welcome - you're a cloud native application developer! As developers, our responsibility has broadened, and more software means more software security concerns for us to address.

View Video

Snyk

Read more about Stranger Danger: Your JavaScript Attack Surface Just Got Bigger

How Trustwave Uses the NIST Framework to Inform Strategy and Mitigate Cybersecurity Risk

Nov 16, 2022 By Trustwave In Trustwave

The National Institute of Standards and Technology’s (NIST) Cybersecurity Framework (CSF) is one of several “gold level” standards used by public and private organizations as the basis for their cybersecurity protocols. It is also the benchmark utilized by Trustwave to protect our clients. NIST rolled out the CSF in 2014 as a set of guidelines for mitigating organizational cybersecurity risks.

Read Post

Trustwave

Read more about How Trustwave Uses the NIST Framework to Inform Strategy and Mitigate Cybersecurity Risk

Torq Joins the Cloud Security Alliance

Nov 16, 2022 By Eldad Livni In Torq

We’re extremely happy to announce that Torq has joined the Cloud Security Alliance (CSA), the world’s leading organization dedicated to defining and raising awareness of best practices to help ensure a secure cloud computing environment. The CSA has more than 80,000 members worldwide and has been endorsed by the American Presidential Administration, which selected the CSA Summit as the venue for announcing the federal government’s cloud computing strategy.

Read Post

Torq

Read more about Torq Joins the Cloud Security Alliance

The Real Cost of Cryptomining: Adversarial Analysis of TeamTNT

Nov 16, 2022 By Nicholas Lang In Sysdig

TeamTNT is a notorious cloud-targeting threat actor, who generates the majority of their criminal profits through cryptojacking. Sysdig TRT attributed more than $8,100 worth of cryptocurrency to TeamTNT, which was mined on stolen cloud infrastructure, costing the victims more than $430,000. The full impact of TeamTNT and similar entities is unknowable, but at $1 of profit for every $53 the victim is billed, the damage to cloud users is extensive.

Read Post

Sysdig

Read more about The Real Cost of Cryptomining: Adversarial Analysis of TeamTNT

Introducing Tines Labs

Nov 16, 2022 By John Tuckner In Tines

Tines empowers anyone to automate their manual work, regardless of complexity, without writing a single line of code. Many teams starting on their SOAR journey often don't know what processes can be automated and find it challenging to translate their manual work into software-based solutions. In cybersecurity, automating repetitive processes at scale is a relatively new idea with little public research to support it.

Read Post