Technology

Detecting suspicious activity on AWS using cloud logs

Jul 11, 2022 By Michael Isbitski In Sysdig

AWS offers a large spectrum of services and compute. The “shared responsibility” model in cloud presents a simplified structure of organization responsibilities and cloud provider responsibilities. Generally, identity and access management (IAM), applications, and data form the dividing line, but lines blur depending on the given cloud service the organization is consuming. This is true of all cloud providers, including the AWS Shared Responsibility Model.

Read Post

Sysdig

Read more about Detecting suspicious activity on AWS using cloud logs

What is Lockdown Mode for iOS and iPadOS and why should I care?

Jul 11, 2022 By Christoph Hebeisen In Lookout

Apple recently announced a new feature in its upcoming iOS and iPadOS called Lockdown Mode. The aim is to protect users such as corporate executives, government officials, journalists, activists and other users that are likely targets of sophisticated surveillanceware. The goal of Lockdown Mode is to restrict certain device capabilities that spyware has exploited in the past in order to reduce the attack surface on Apple devices.

Read Post

Lookout

Read more about What is Lockdown Mode for iOS and iPadOS and why should I care?

The AWS Shared Responsibility Model Guide

Jul 11, 2022 By Arctic Wolf In Arctic Wolf

Organizations are moving workloads to the cloud to help keep pace with the speed of innovation. However, too often this is done without a proper plan in place to ensure that their security doesn’t fall behind. The potential financial and reputational damage, as well as the risk of lost data from a breach is massive, and that makes proper planning crucial.

Read Post

Arctic Wolf

Read more about The AWS Shared Responsibility Model Guide

5 Misconceptions about DAST for Mobile

Jul 8, 2022 By Abhinav Vasisth In Appknox

Organizations that develop mobile apps need to be aware of the potential cyber security threats. These threats can lead to the loss of users' private data, which can have serious repercussions for industries like fintech, healthcare, ecommerce, etc. In order to prevent these malicious practices, Dynamic Application Security Testing (DAST), a security testing tool, has been introduced. It helps to weed out specific vulnerabilities in web applications whenever they run in the production phase.

Read Post

Appknox

Read more about 5 Misconceptions about DAST for Mobile

The M&A Open Source Risk Number

Jul 8, 2022 By Phil Odence In Synopsys

Find out what our audit services team unearthed in the 2,400+ codebases we reviewed in 2021. Spoiler alert: In 2021, audits found open source in 100% of our customer engagements. Regular readers know that Synopsys recently published the seventh edition of the “Open Source Security and Risk Assessment” (OSSRA) report. We think it provides the best information available about usage of open source in the wild, and the frequency of open source risks.

Read Post

Synopsys

Read more about The M&A Open Source Risk Number

A Brief Guide to Cloud-Native Applications, Technology, and Security

Jul 7, 2022 By Adam Murray In Mend

What are cloud-native applications? According to the Cloud Native Computing Foundation (CNCF), the term “cloud native” describes systems that are specifically designed to help build and run scalable applications in all cloud environments, including public, private, and hybrid clouds. Cloud-native applications use the attributes of cloud architecture in ways that legacy systems can’t. They don’t need any onsite computing infrastructure and can scale quickly to meet demand.

Read Post

Mend

Read more about A Brief Guide to Cloud-Native Applications, Technology, and Security

geeks+gurus: Cloud Migration

Jul 7, 2022 By Sumo Logic In Sumo Logic

Join the geeks+gurus of Sumo Logic for an interactive conversation on how cloud migration helps businesses innovate faster, modernize aging infrastructure, scale globally, and get continuous real-time insights—even from complex, multi-cloud architectures.

View Video

Sumo Logic

Read more about geeks+gurus: Cloud Migration

AppSec Decoded: Get the most out of your open source software | Synopsys

Jul 7, 2022 By Synopsys In Synopsys

Watch our latest edition of AppSec Decoded as Tim Mackey, principal security strategist at Synopsys Cybersecurity Research Center, and Taylor Armerding, security advocate at Synopsys Software Integrity Group, discuss the value of Black Duck® by Synopsys audit services in the M&A world, and ways to reap the benefits of your open source software without falling victim to the risks.

View Video

Synopsys

Read more about AppSec Decoded: Get the most out of your open source software | Synopsys

Snyk Live : Legal Side of Open Source Use with Yos Pang

Jul 7, 2022 By Snyk In Snyk

Open source use has spread rapidly throughout the world. With many governments, businesses and consumers utilising open source libraries and platforms on a daily basis. As the adoption of open source has increased there are many legal aspects to consider including licensing, compliance and more. This special episode of Snyk Live we are joined by Snyk Head of APJ Legal, Yos Pang. Yos is an international, commercial technology lawyer, with a strong background in intellectual property and a particular interest in open source and open content issues.

View Video

Snyk

Read more about Snyk Live : Legal Side of Open Source Use with Yos Pang

Why the Edge Really Matters Right Now

Jul 6, 2022 By Elaine Feeney In Netskope

Elaine Feeney is a member of the Netskope Network Visionaries advisory group. For any business, speed matters a lot. Speed of service is key to happy customers because any delays that users experience directly impact the success of the organization. Security processing that causes delays for the customers or employees has negative business impacts. Now more than ever, security controls have become a board-level priority due to elevating risks.

Read Post