Security

Security Ratings Demystified

Mar 22, 2022 By SecurityScorecard In SecurityScorecard

SecurityScorecard is the global leader in cybersecurity ratings and the only service with over 12 million companies continuously rated. The company is headquartered in New York and operates in 64 countries around the globe.

View Video

SecurityScorecard

Read more about Security Ratings Demystified

Managing Insider Risk vs. Insider Threat

Mar 22, 2022 By Veriato In Veriato

View Video

Veriato

Read more about Managing Insider Risk vs. Insider Threat

Dissecting a Phishing Campaign with a Captcha-based URL

Mar 22, 2022 By Trustwave In Trustwave

In today’s environment, much of the population are doing their bank or financial transactions online and online banking or wire transfers have become a huge necessity. Recently, we received a phishing email that is targeting PayPal accounts. The email header contains an alarming subject and the From: address is a spoofed PayPal-like domain. The Message-Id is also highly suspicious as it uses web hosting site DreamHost which is not related to PayPal.

Read Post

Trustwave

Read more about Dissecting a Phishing Campaign with a Captcha-based URL

Alleged Okta Breach - What Can You Do?

Mar 22, 2022 By SecurityScorecard In SecurityScorecard

Early in the morning of March 22nd a threat group known as LAPSUS$ posted screenshots on their Telegram account that allegedly show access to Okta internal systems such as Slack, Cloudflare, Jira, Salesforce and other “Okta cards.” Okta’s CEO Todd McKinnon apparently confirmed an event in January in a tweet:: “In late January 2022, Okta detected an attempt to compromise the account of a third party customer support engineer working for one of our subprocessors.

Read Post

SecurityScorecard

Read more about Alleged Okta Breach - What Can You Do?

File Integrity Monitoring Policy: Best Practices to Secure Your Data

Mar 22, 2022 By Dirk Schrader In Netwrix

File integrity monitoring is essential for information security because it helps quickly identify unauthorized changes to critical files that could lead to data loss and business disruptions. File changes may be your first or only indication that you’ve been hacked in a cyberattack or compromised through errors by staff or system update processes.

Read Post

Netwrix

Read more about File Integrity Monitoring Policy: Best Practices to Secure Your Data

Best practices for containerizing Go applications with Docker

Mar 22, 2022 By Jekayin-Oluwa Olabemiwo In Snyk

Containerization describes the creation of a self-contained computing environment that runs on a host machine and any operating system (OS) with an available container runtime engine. Built from an image, a container holds an app and the filesystem alongside configurations, dependencies, binaries, and other specifications needed to run it successfully. Containers are typically much smaller than virtual machines and run in the host’s OS rather than containing OSs themselves.

Read Post

Snyk

Read more about Best practices for containerizing Go applications with Docker

WhiteSource SCA Administration - User Interface Walkthrough

Mar 22, 2022 By Mend In Mend

WhiteSource provides a simple yet powerful solution for companies to manage open source components in their application. WhiteSource is designed for security and software development teams, to give managers the control and visibility over the vulnerabilities in their app and developers to tools to quickly fix what matters. The following video is a brief overview the of user interface and some of the feature functionality within.

View Video

Mend

Read more about WhiteSource SCA Administration - User Interface Walkthrough

Ransomware Attacks: How to Mitigate Risk and Protect Your Data

Mar 22, 2022 By Lookout In Lookout

Ransomware is not a new threat, but the tactics that attackers are using to access corporate infrastructures and steal resources has evolved. With the continuation of remote work and data being stored on the cloud, attackers only need to compromise one user, app or device to gain access. Learn more about how these attacks happen.

View Video

Lookout

Read more about Ransomware Attacks: How to Mitigate Risk and Protect Your Data

Shifting Log4j Discovery Right

Mar 22, 2022 By Hope Goslin In Veracode

You hear a lot about shifting your application security (AppSec) left – in other words, shifting AppSec to the beginning of the software development lifecycle (SDLC). While we firmly believe that you should continue scanning in development environments, that doesn’t mean that you should neglect applications that have been deployed to or staged in runtime environments.

Read Post

Veracode

Read more about Shifting Log4j Discovery Right

Okta and LAPSUS$: What you need to know

Mar 22, 2022 By Jake King In Elastic

Financially motivated adversary groups executing ransomware attacks have rightfully gotten our attention in recent years. Similar to Lulzec, there’s a new group catching attention with different motivations, targeting larger organizations.

Read Post

Elastic

Read more about Okta and LAPSUS$: What you need to know

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Security

Security Ratings Demystified

Managing Insider Risk vs. Insider Threat

Dissecting a Phishing Campaign with a Captcha-based URL

Alleged Okta Breach - What Can You Do?

File Integrity Monitoring Policy: Best Practices to Secure Your Data

Best practices for containerizing Go applications with Docker

WhiteSource SCA Administration - User Interface Walkthrough

Ransomware Attacks: How to Mitigate Risk and Protect Your Data

Shifting Log4j Discovery Right

Okta and LAPSUS$: What you need to know

Monthly Archive

Follow Us