Cybersecurity Awareness Month: Use Strong Passwords
For the second week of #CybersecurityAwarenessMonth, we're outlining the importance of using strong passwords that help add an additional layer of protection.
Security | Threat Detection | Cyberattacks | DevSecOps | Compliance
The Latest Cybersecurity News & Insights From Around The World
Security
The 443 Podcast Episode 213 - Cyber Energy Star
This week on the podcast we cover a proposed program from the White House to create an Energy Star-like label for cybersecurity in consumer products. Before that, we cover two other updates from the federal government including a new open source tool from CISA and the latest reincarnation of Privacy Shield. The 443 Security Simplified is a weekly podcast that gets inside the minds of leading white-hat hackers and security researchers, covering the latest cybersecurity headlines and trends.
Real-time OWASP vulnerabilities as you code with Code Sight and Rapid Scan Static
Imagine you are developing an application – no matter if it’s a web, mobile, or desktop app – and your IDE informs you of security vulnerabilities as you code. The release of Code Sight 2022.9.0 for VS Code and IntelliJ makes that a reality. With Synopsys’ industry-leading static application security testing (SAST) engine powering Code Sight’s Rapid Scan Static, there is no configuration or tuning. It’s actual sophisticated taint flow and not just lint.
Maturing Your Security Hygiene
Security hygiene is the process of reviewing your current cybersecurity posture and implementing security controls that mitigate data breach risks. As you mature your security hygiene, you create a centralized log management strategy that defines a path to a more robust posture. As part of this, you need to accommodate for the way threats evolve, including those unique to your specific industry or business.
2Torial: Protect All of Your Endpoints with Elastic Security
Use Elasticsearch and Agent to protect all of your endpoints and take action when malicious actors threaten your environment.
Cybersecurity startup founders roundtable
We are pulling together several cybersecurity founders to talk about their companies, their experiences, lessons they have learned, and things they wished they knew. All of this with the intent of imparting some knowledge and inspiring those that may be sitting on the sidelines. Innovation is the lifeblood of cybersecurity and we want to do everything we can to get more people in the game.
Secure JavaScript URL validation
When developers need to handle URLs in different forms for different purposes — such as browser history navigation, anchored targets, query parameters, and so on — we often turn to Java. However, its frequent use motivates attackers to exploit its vulnerabilities. This risk of exploitation is why we must implement URL validation in our JavaScript applications.
How Azalea Health Ensures Customer Trust with Cloud-based Software Security
As head of the product department at Azalea Health, I need to understand what our market needs. Based on the conversations that we've had with hospitals and clinics, enterprise-grade security is something they desperately need but rightfully expect their EHR system to provide. That’s why it’s important for our organization to take the responsibility of securing health data off their shoulders.
Hey! Did you hear that (Insert: Your Company Name and Product) got hacked?
Have you noticed it’s never “Hey, someone got by a firewall” or “WOW, they bypassed the network security”? No. It’s always about the Device. It’s the same for hackers because everything else is just a means to an end, and that end is your Device! Imagine, late at night, driving around the Amusement Park security gate, then busting open the locked gated fence. These actions are necessary to get to the big score, the Rides! Yaaahoo!