Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

%term

alienvault

Dark Web monitoring and scanning explained

Sep 16, 2020 By Nick Cavalancia In AT&T Cybersecurity

Shady deals often occur in darkness – criminal activities require secrecy to cloak their illicit nature. Today, you can find those dark places on the fringes of the internet, known as the Dark Web. More often than not, this is the place where cybercriminals go to monetize the data they’ve acquired as the result of a breach.

Read Post

Leveraging behavior analytics and machine learning algorithms in your PAM strategy

Sep 16, 2020 By ManageEngine In ManageEngine
Modern technologies like machine learning (ML) algorithms can introduce a forward-thinking outlook to privileged access management (PAM) and enable enterprises to predict emerging access risks in real time. ML-based anomaly detection systems can deeply analyze raw data collected around privileged activity, profile standard user behavior patterns, and then surveil future operations to detect any deviations from the norm, such as server logins after office hours.
View Video
sysdig

Manage AppArmor profiles in Kubernetes with kube-apparmor-manager

Sep 16, 2020 By Kaizhe Huang In Sysdig

Discover how Kube-apparmor-manager can help you manage AppArmor profiles on Kubernetes to reduce the attack surface of your cluster. AppArmor is a Linux kernel security module that supplements the standard Linux user and group-based permissions to confine programs to a limited set of resources. AppArmor can be configured for any application to reduce its potential attack surface and provide greater in-depth defense.

Read Post
sysdig

Detecting CVE-2020-14386 with Falco and mitigating potential container escapes

Sep 16, 2020 By Kaizhe Huang In Sysdig

On September 14, CVE-2020-14386 was reported as a “high” severity threat. This CVE is a kernel security vulnerability that enables an unprivileged local process to gain root access to the system. CVE-2020-14386 is a result of a bug found in the packet socket facility in the Linux kernel. It allows a bad actor to trigger a memory corruption that can be exploited to hijack data and resources and in the most severe case, completely take over the system.

Read Post
netskope

Forging Better Security Outcomes with Integrated Threat Intelligence

Sep 16, 2020 By Brian Tokuyoshi In Netskope

For most companies, security and IT systems are growing in complexity, breadth of scope, and coverage, which consumes budget and staff time. The rapid breakdown of the traditional perimeter in this “new normal” world increases the challenges IT teams and remote users face on a daily basis.

Read Post

How to Secure Mixed Linux/Windows Clusters with Calico Policy

Sep 16, 2020 By Tigera In Tigera
Calico is the only cross-platform CNI and Network Policy engine available today and is currently powers more than 150,000 known clusters across millions of nodes worldwide. Many organizations have .NET and windows workloads that they are or will eventually modernize and deploy to Kubernetes. We have been collaborating with Microsoft and joint customers over the past few years to bring Calico to the Windows platform.
View Video
veracode

16% of Orgs Require Developers to Self-Educate on Security

Sep 16, 2020 By Meaghan McBee In Veracode

Theoretical physicist Stephen Hawking was spot on when he said, “Whether you want to uncover the secrets of the universe, or you just want to pursue a career in the 21st century, basic computer programming is an essential skill to learn.” It’s no secret that programming is a thriving career path – especially with the speed of software development picking up, not slowing down.

Read Post
tripwire

The History of Common Vulnerabilities and Exposures (CVE)

Sep 16, 2020 By Ary Widdes In Tripwire

During the late 1990s, security professionals were using information assurance tools in concert with vulnerability scanners to detect and remove vulnerabilities from the systems for which they are responsible. There’s just one problem – each security vendor has its own database with little to no crossover.

Read Post

Copyright © 2024 OpsMatters™. All rights reserved.