Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Security

styra

Three Benefits Authorization Brings to your Identity Strategy

Apr 19, 2022 By Jeff Broberg In Styra

Organizations today are embracing cloud-native technologies to increase time-to-market, scalability and cost savings. A big part of the cloud-native transition is moving legacy systems and architectures to the cloud. With this comes both complexity and new risks because modern applications are often composed of dozens of microservices, housed in containers and hosted on immutable, dynamically scaling platforms like Kubernetes.

Read Post
CrowdStrike

Security Doesn't Stop at the First Alert: Falcon X Threat Intelligence Offers New Context in MITRE ATT&CK Evaluation

Apr 19, 2022 By Kurt Baker - Liviu Arsene - Sanket Karpe In CrowdStrike

CrowdStrike recently demonstrated the power of the Falcon platform and its integrated approach to providing robust protection by exposing all attack tactics used as part of the MITRE Engenuity ATT&CK Enterprise Evaluation released in April 2022. The evaluation focused on emulating two of today’s most sophisticated Russian-based threat groups: WIZARD SPIDER and VOODOO BEAR (Sandworm Team).

Read Post
synopsys

CyRC Vulnerability Analysis: CVE-2022-1271 in gzip, but it's not as bad as it sounds

Apr 19, 2022 By Jonathan Knudsen In Synopsys
CVE-2022-1271 is a new vulnerability affecting gzip, a widely used open source component for archiving, compressing, and decompressing files. CVE-2022-1271, also tracked in the Black Duck KnowledgeBase™ as BDSA-2022-0958, is a bug in gzip, a file format and software application used for archiving, compressing, and decompressing files.
Read Post

Random but Memorable - Episode 9.3: Best Of Guests Special

Apr 19, 2022 By 1Password In 1Password
Love a good security tip? We've got you covered in this episode as we round up the very best security advice from our past expert guests. We also talk about the MailChimp data breach and the UK teens behind the infamous LAPSUS$ hacking group, in this week's Watchtower Weekly. Plus, we have some fun conjuring up password-related movie titles – coming soon to a theater near you… 🍿🎬 🏰
View Video
tripwire

Top Tips for Moving from Compliance to Cybersecurity Excellence

Apr 19, 2022 By Anastasios Arampatzis In Tripwire

Compliance should be an essential part of business operations, regardless of industry. Taking preventative measures to manage compliance and mitigate risk can feel like a hassle upfront, but it can save your organisation huge costs in the long run. Compliance violations can result in fines, penalties, lawsuits, loss of reputation, and more. However, your efforts should not stop at obtaining a compliance certificate, rather they should expand to accelerate your cybersecurity posture.

Read Post
tripwire

What Makes Telecommunication Companies Such a Fertile Ground for Attack?

Apr 19, 2022 By Jeannine Balsiger In Tripwire

Telecommunication is the first, and most robust network ever invented. This may seem like a brazen and bold statement, but when examined closely, it is not the stuff of fantasy. Prior to the invention and development of the internet, what other way could a person pick up a device, and “dial” a few numbers and end up seamlessly connected to someone across the vast expanse of a countryside?

Read Post
sysdig

Eliminate noise and prioritize the vulnerabilities that really matter with Risk Spotlight

Apr 19, 2022 By Daniella Pontes In Sysdig

Is your team drowning in container vulnerability noise? Are you spending a lot of time figuring out where to focus resources on and still missing dangerous vulnerabilities? Know that you are not alone. Container environments revolutionized app development by enabling unprecedented velocity, but not without a price. The use of readily available container images of third-party and open-source code enabled much faster cycles, but also facilitated the introduction of vulnerabilities in the application.

Read Post

Copyright © 2024 OpsMatters™. All rights reserved.