Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Security

Kubernetes Access Controls with Calico Enterprise - How to apply egress access controls

Feb 27, 2020 By Tigera In Tigera
No matter where you are in your Kubernetes journey, eventually you’ll have to connect your k8s cluster to external resources like databases, cloud services, and third-party APIs. A majority of existing workloads are non-Kubernetes, and at some point, your Kubernetes applications will need to communicate with them.
View Video
detectify

Gehaxelt - How Wordpress Plugins Leak Sensitive Information Without You Noticing

Feb 26, 2020 By Detectify In Detectify

Sebastian Neef (@gehaxelt) is a IT security freelancer and a top contributor from the Detectify Crowdsource community. In this guest blog, he looks at ways WordPress plugins leak sensitive data in the wild: The OWASP Top 10 puts Sensitive Data Exposure on the 3rd place of the most common web security issues. In this blog post we will have a look at sensitive data exposure that you might not be aware of.

Read Post
sumologic

A New Integration between Sumo Logic and ARIA Cybersecurity Solutions

Feb 26, 2020 By Sumo Logic In Sumo Logic
When thinking about many of the worst data breaches we’ve seen so far (Equifax, CapitalOne, Target, Home Depot, and more), there was one common element: The attacks were not detected while they were active on the internal networks. It’s easy to think of the internal network as what’s onsite and directly in control. However, an organizations internal network also includes what extends beyond what’s on-premises, like instances within the public cloud and off-site hosted data centers.
Read Post
tripwire

NSA Releases Cloud Vulnerability Guidance

Feb 26, 2020 By Anthony Israel-Davis In Tripwire

The United States’ National Security Agency (NSA) has put together a short guidance document on mitigating vulnerabilities for cloud computing. At only eight pages, it is an accessible primer for cloud security and a great place to start before taking on something like the comprehensive NIST 800-53 security controls.

Read Post
elastic

The advantages of resource-based pricing in security

Feb 26, 2020 By Mike Nichols In Elastic

Given the complexity of large enterprise environments, coupled with the diversity of the vendor landscape, there is no single, agreed-upon “best” way to buy security. The battles continue between CAPEX or OPEX, net-30 or net-90, annual or multi-year, perpetual or subscription. One thing we do know, however, is that all too often the consumer pays for something he or she does not use.

Read Post
logsign

What is a Data Breach and How It Can Be Cured? (Part 1)

Feb 26, 2020 By Fakhar Imam In Logsign

In the age of the digital world, cyber threats and vulnerabilities have gained the attention of security leaders as well as countries across the globe. The issue of cyber warfare is no longer limited to organizations. Rather, even state-sponsored cyber-attacks are being organized and launched against enemy states.

Read Post

DevSecOps Best Practices with JFrog Xray

Feb 26, 2020 By JFrog In JFrog
JFrog builds security products that enable organizations to trust their pipeline from development to deployment and production. In this webinar, you will learn how to leverage JFrog Xray to achieve radical transparency of the binary components in your data center. Understand the impact of these components on production system quality, performance, and architectural changes. We will also cover security topics such as circle of trust, security between locations, security replication, access tokens, and auditing.
View Video

Copyright © 2024 OpsMatters™. All rights reserved.