Security

Pyrsia - Securing your OSS Supply Chain

Sep 7, 2022 By JFrog In JFrog

With OSS, not knowing where all your software comes from means hard-to-spot risks to the integrity of your services. Without constant identity checks and safety protocols for keys and secrets, open-source dependencies can open the door to breaches, exploits, and supply chain attacks. Enter Pyrsia -- your torch that lights up the open-source supply chain!

View Video

JFrog

Read more about Pyrsia - Securing your OSS Supply Chain

#DevOpsSpeakeasy at #KubeCon EU 2022 with Nuno Do Carmo

Sep 7, 2022 By JFrog In JFrog

Nuno Do Carmo, Technical Writer for SUSE Rancher, discusses bringing the Cloud Native technologies to Windows and more specifically Windows Subsystem for Linux.

View Video

JFrog

Read more about #DevOpsSpeakeasy at #KubeCon EU 2022 with Nuno Do Carmo

Stranger Danger: Your JavaScript Attack Surface Just Got Bigger

Sep 7, 2022 By Snyk In Snyk

Building JavaScript applications today means that we take a step further from writing code. We use open-source dependencies, create a Dockerfile to deploy containers to the cloud, and orchestrate this infrastructure with Kubernetes. Welcome - you're a cloud native application developer! As developers, our responsibility has broadened, and more software means more software security concerns for us to address.

View Video

Snyk

Read more about Stranger Danger: Your JavaScript Attack Surface Just Got Bigger

Security Insights on the Low-Code / No-Code Attack Vector

Sep 7, 2022 By Mike Wilkes In SecurityScorecard

The August 4th compromise of Twilio via a targeted smishing attack has been a topic of wide concern and discussion on social media. My first thoughts on hearing of the attack were to virtually “pat myself down” with regard to exposure risk. Kind of like that feeling when you’re not sure if your car keys or wallet are in your pocket a few blocks after walking away from your parking space. Is my company affected by the breach? Did we receive a notification email from them?

Read Post

SecurityScorecard

Read more about Security Insights on the Low-Code / No-Code Attack Vector

geeks+gurus: SOAR - No-code vs. zero-dev security automation

Sep 7, 2022 By Sumo Logic In Sumo Logic

In this session, Enrico Benzoni interviews Dario Forte, Michele Zambelli and Andrea Fumagalli, to discuss the role of integration in SOC automation, the difference between no-code and zero-dev automation and the importance of the human factor because the quickest response to incidents is not always the right one.

View Video

Sumo Logic

Read more about geeks+gurus: SOAR - No-code vs. zero-dev security automation

How Hospital Hacks Happen: The Nation State Attack

Sep 7, 2022 By Forescout In Forescout

This is a use case that looks at how nation state actors can create a “watering hole” to infiltrate a hospital’s network – and what to do about it.

View Video

Forescout

Read more about How Hospital Hacks Happen: The Nation State Attack

Working Abroad as a Cybersecurity Professional: What You Need to Know

Sep 7, 2022 By Tripwire Guest Authors In Tripwire

The world is becoming a smaller place. The prospect of working in another country becomes increasingly realistic and even promising as businesses migrate toward the cloud and collaborate more closely with international partners. Amid this shift, cybersecurity professionals may wonder if they can work abroad. Cybersecurity is a worldwide concern, creating plenty of global opportunities for security professionals.

Read Post

Tripwire

Read more about Working Abroad as a Cybersecurity Professional: What You Need to Know

How Penetration Testing can help prevent Ransomware Attacks

Sep 7, 2022 By Tripwire Guest Authors In Tripwire

It is hard to believe, but ransomware is more than three decades old. While many would think that the ransomware mayhem started with the WannaCry attack of 2017, that is simply the most publicized example. Since then, dozens of ransomware strains have been utilized in a variety of cyberattacks.

Read Post

Tripwire

Read more about How Penetration Testing can help prevent Ransomware Attacks

3 Ways Software Engineers Can Save Time and Eliminate DevOps Waste

Sep 7, 2022 By Veracode In Veracode

As software engineers, we are incredibly busy. We’re designing new features, writing tests and implementing code, debugging, opening pull requests, and performing code reviews. That’s not to mention all of the DevOps stuff that our teams have us doing nowadays, too. Oh yes, and then there are stand-ups, check-ins, one-on-ones, and all-hands. The thing is: you don’t have time to waste. If there is wasted time in your workweek, it’s worth looking into how to recapture that time.

Read Post

Veracode

Read more about 3 Ways Software Engineers Can Save Time and Eliminate DevOps Waste

Top Cyber Security Websites of 2022

Sep 7, 2022 By Cybriant In Cybriant

These security websites will help your team up-to-date on the latest cybersecurity scams. It is important to keep up with the latest cyber security threats and how to protect your company from them. With so many websites and articles out there on the topic, it can be difficult to know which ones are worth reading.

Read Post

Cybriant

Read more about Top Cyber Security Websites of 2022

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Security

Pyrsia - Securing your OSS Supply Chain

#DevOpsSpeakeasy at #KubeCon EU 2022 with Nuno Do Carmo

Stranger Danger: Your JavaScript Attack Surface Just Got Bigger

Security Insights on the Low-Code / No-Code Attack Vector

geeks+gurus: SOAR - No-code vs. zero-dev security automation

How Hospital Hacks Happen: The Nation State Attack

Working Abroad as a Cybersecurity Professional: What You Need to Know

How Penetration Testing can help prevent Ransomware Attacks

3 Ways Software Engineers Can Save Time and Eliminate DevOps Waste

Top Cyber Security Websites of 2022

Monthly Archive

Follow Us