Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

%term

riskoptics

CCPA Exemptions: The California Consumer Privacy Act and the Gramm-Leach-Bliley Act

Feb 13, 2020 By Thea Corteza In RiskOptics

A change is coming for privacy protection. Are you ready? For the past twenty years, most financial services businesses fell under the requirements of the Gramm-Leach-Bliley Act (GLB Act or GLBA). This law federally governed the collection and disclosure of customers’ personal financial information. However, on January 1st, 2020, a new privacy rule—the California Consumer Privacy Act (CCPA)—wentis going into effect.

Read Post

RDS: Do Not Allow LPT Port Redirection

Feb 12, 2020 By CalCom In CalCom
This policy specifies whether to prevent the redirection of data to client LPT ports during a Remote Desktop Services session. You can use this setting to prevent users from mapping local LPT ports and redirecting data from the remote computer to local LPT port peripherals. If a value is configured to Disabled or Not Configured, the attacker can leverage it to map the client’s LPT ports. In addition, he can use the port to redirect data from the Terminal Server to the local LTP ports.
View Video

Code Sight IDE Plugin Combines SAST and SCA to Analyze Proprietary and Open Source Code | Synopsys

Feb 12, 2020 By Synopsys In Synopsys
Until now, single analysis tools have given developers only a partial view of security risks – providing either static analysis of proprietary code or software composition analysis of open source. This separation often leads to undetected vulnerabilities, decreased developer productivity, and longer release cycles.
View Video
tripwire

A Guide to Digital Privacy for You and Your Family

Feb 12, 2020 By Tripwire Guest Authors In Tripwire

Having worked with many individuals responding to incidents where their digital private images were shared without consent, social media or email accounts had unauthorised access, and even physical safety was a concern, it is all too familiar how terrifying the unknown can be. As someone who has been on both the victim’s and later the responder’s side, I am qualified to express both the terror and knowledge of things you can do to take back control.

Read Post
tigera

Supercharging Workload Security in Your K8s Cluster

Feb 12, 2020 By Vaibhav Thakur In Tigera

2019 was a big year for Kubernetes adoption, and 2020 is sure to exceed that pace. Already, we have seen a large number of organizations migrating their workloads to Kubernetes (k8s) both in public and private clouds as they embrace a hybrid cloud strategy. With so much at stake, what are you currently using for network security inside your k8s cluster?

Read Post
egnyte

User Identity Mapping In a Hybrid Environment, Part 1

Feb 12, 2020 By Yogesh Kulkarni In Egnyte

A Guide to User and Resource Access In any system, the access or denial of resources is determined by the identity of the entity that attempts to use the resource. Therefore, identity mapping plays a very crucial role in ensuring that access to resources is as broad as it needs to be, but is limited only to those who are authorized to have access and protecting resources from unauthorized access.

Read Post
alienvault

New PayPal phishing scam seeks to go beyond login credential information

Feb 11, 2020 By Karoline Gore In AT&T Cybersecurity

Up until now, some of PayPal users’ greatest fears in terms of cybersecurity were phishing scams aimed at obtaining their login credentials. In January of this year, PayPal confirmed a high-severity bug affecting the login form, with PayPal security investigator, Alex Birsan, finding a javascript file with what looked like a CSRF token and a session ID – which makes login information vulnerable to attackers.

Read Post

Copyright © 2024 OpsMatters™. All rights reserved.