Learn the best practices for handling secrets in Go in the cloud-native ecosystem.

Wednesday, Sep 11th, 2024 DevSecOps: It sounds like a dream team, right? But the reality is often a bit more... challenging. When companies try to bring together development and security, it's like trying to mix oil and water. There are organizational roadblocks, cultural clashes, and technical headaches that can make the whole process feel like a never-ending uphill battle. The challenges of adopting DevSecOps may seem insurmountable. Is adopting DevSecOps worth the effort? Yes. One hundred percent.

Vanta has achieved the Amazon Web Services (AWS) Security Competency status. This designation recognizes that Vanta excels at providing deep AWS technical expertise and integrations that help customers achieve their cloud security and compliance goals. ‍ Over half of Vanta’s 8,000+ customers leverage AWS. Achieving the AWS Security Competency reinforces our continual commitment to delivering deeply automated, integrated product experiences.

What do bank account takeovers, credit card scams, purchase of counterfeit goods, and frequent flier mile theft, all have in common? All these cyber crimes usually begin with a user visiting a fake website. In the first quarter of 2024, over 963,000 unique phishing sites were detected worldwide. Phishing sites are just one category of fake websites that mimic legitimate sites to steal information. The overall scope of fake websites is likely much broader.

At 8:00 on Saturday, 31st August 2024, millions of people were poised to be part of pop culture history. Four days earlier, on 27th August, seminal Britpop heavyweights Oasis shocked the music world by finally confirming their long-awaited reunion. The reconciliation of brothers Liam and Noel Gallagher sent fans into a frenzy. For millions worldwide, it was essential to get tickets to one of the 17 announced gigs. The demand was enormous.

It is always important to be one step ahead of cyber attackers. The tools and methods used to protect computer networks need to keep improving to match the growing cyber threats. One big change in this area is moving from old-fashioned Intrusion Detection Systems (IDS) to newer Network Detection and Response (NDR) solutions. This blog will look at how IDS has changed into NDR, emphasizing their main differences and the better features NDR offers.

When Clorox was hit with a ransomware attack in 2023, the impact went beyond just the infected endpoints. Threat actors succeeded in taking many of the organization’s automated systems offline and impacted large retailers’ ability to order products from the manufacturer. There was significant operational downtime as it took Clorox over a month to contain the breach, and the resulting financial loss was in the tens of millions.

You may be concerned if your Social Security number (SSN) was found on the dark web following the recent breach that, according to CNBC, exposed almost three billion SSNs. National Public Data, a company that conducts background checks, suffered a data breach involving SSNs, email addresses, phone numbers and home addresses. If your SSN was found on the dark web, you are most likely concerned about your identity being stolen.