Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

%term

Kubernetes Quick Hits: Use SecurityContext to drop unnecessary Linux Capabilities

Jul 28, 2021 By Snyk In Snyk
In this episode of our Kubernetes Quick Hits video series, Eric Smalling–Sr. Developer Advocate at Synk– talks about Linux Capabilities and why you probably can run with none of them enabled. Linux Capabilities is item number six from our recently published cheatsheet, 10 Kubernetes Security Context settings you should understand, check it out and start securing your Kubernetes application deployments today!
View Video

OT security and implications to wider IT Environments

Jul 28, 2021 By Corelight In Corelight
Poor Operational Technology (OT) security can lead to serious IT data breaches. Learn from experts at Splunk, Corelight, and ClearShark about the risks unsecured OT systems pose to IT networks, and how visibility into network traffic can enable accurate alerting to malicious behavior. You’ll learn key differences between OT and IT networks, about Corelight’s ability to understand and enhance OT protocols, and the value of Zeek wire data for both IT and OT security.
View Video

Accelerate SecOps with a Single Source of Network Truth

Jul 28, 2021 By Corelight In Corelight
Network evidence is vital for defense, but collecting it can be overly complicated and result in incomplete data that is difficult to use. By transforming VPC and on-premises traffic into Zeek logs and Suricata alerts, you can accelerate threat hunting and incident response workflows in security analytics tools like Chronicle and VirusTotal.
View Video
tripwire

The Next Disruptive ICS Attack: 3 Likely Sources for Major Disruptions

Jul 28, 2021 By Craig Young In Tripwire

Faced with rows of empty gas pumps, many Americans on the East Coast may be wondering why this happened, whether it will happen again, or if there is anything we can do to avoid future catastrophe. The unpleasant truth of the matter is that this will certainly not be the last time society is disrupted due to attackers targeting critical industrial control systems (ICS). The impact of such an attack is amplified by the growing reliance on automation and antiquated protocols throughout many OT networks.

Read Post
tripwire

Cloud Compliance Best Practices: A Quick Overview

Jul 28, 2021 By Tripwire Guest Authors In Tripwire

Cloud compliance is more important than ever, especially as businesses and organizations continue to engage in remote and digital work practices due to COVID-19. Even before the pandemic, more and more companies were migrating to the cloud. But what exactly is cloud compliance, and what are some best practices you should keep in mind if you’re shopping for a provider or looking to enhance your current computing system?

Read Post
egnyte

Egnyte and Splunk Integration: You Can't See if You Don't Look

Jul 28, 2021 By David Buster In Egnyte

Security Information and Event Management (SIEM) technology provides visibility across an organization's information security systems by collecting and correlating events from logs across many different sources. Security analysts use tools like a SIEM to go “threat hunting”. By correlating disparate events across systems, they can often detect Indicators of Compromise (IoC’s) that may otherwise go unnoticed on individual systems.

Read Post
ekran

Mitigating Insider Threats: Plan Your Actions in Advance

Jul 28, 2021 By Ekran In Ekran
For any organization, insider attacks are like a severe illness: prevention is better than the cure. Like illnesses, insiders mask their malicious actions and can harm your organization for a long time before you detect them. This harm can be in the form of a loss of data, customers, money, etc.   Planning a risk mitigation process helps to stop insider attacks at the early stages or reduce their potential damage.
Read Post
devo

The Future Federal SOC Will Be Data-Driven

Jul 28, 2021 By John Allison In Devo

The executive order on cybersecurity President Biden issued in May doesn’t radically change federal cybersecurity practices for now, but it lays the groundwork for significant changes in the future. The EO directs multiple federal agencies to develop new policies and processes to safeguard federal networks, and also to improve the overall cybersecurity posture of all Americans.

Read Post
synopsys

How to cyber security: Addressing security fatigue

Jul 28, 2021 By Jonathan Knudsen In Synopsys

Addressing security fatigue with small changes to your AppSec strategy can help you manage and minimize risks in your applications. How many times a day does something like this happen to you? Is it 10 times a day? 25? 100? I’m a highly technical security professional and I’m not even sure what I should do. What is PC-Doctor? What is SystemIdleCheck.exe? If I click No, will something not work the way that I want it to work? Each time you see such a prompt, what do you do?

Read Post

Copyright © 2024 OpsMatters™. All rights reserved.