%term

Who Do You Trust? Challenges with OAuth Application Identity

Sep 14, 2021 By Jenko Hwong In Netskope

In our recent blog, Who Do You Trust? OAuth Client Application Trends, we took a look at which OAuth applications were being trusted in a large dataset of anonymized Netskope customers, as well as raised some ideas of how to evaluate the risk involved based on the scopes requested and the number of users involved. One of the looming questions that underlies assessing your application risk is: How does one identify applications? How do you know which application is which? Who is the owner/developer?

Read Post

Netskope

Read more about Who Do You Trust? Challenges with OAuth Application Identity

Microsoft Office Document Triggering New Zero-Day

Sep 13, 2021 By Gustavo Palazolo In Netskope

Most ransomware groups operating in the RaaS (Ransomware-as-a-Service) model have an internal code of A new zero-day vulnerability (CVE-2021-40444) affecting multiple versions of Windows has recently been discovered and disclosed by Microsoft. According to Microsoft’s Security Update Guide, the MSHTML component can be exploited by an attacker through a custom ActiveX control, allowing remote code execution.

Read Post

Netskope

Read more about Microsoft Office Document Triggering New Zero-Day

Collaborate Seamlessly with Egnyte and Google Workspace

Sep 13, 2021 By David Buster In Egnyte

Today’s organizations utilize a multitude of solutions to create, share and manage their sensitive content. That business reality is exacerbated by additional cloud file storage solutions that result from acquisitions, competing employee preferences, or shadow IT initiatives. So, it’s no surprise IT teams struggle to manage and control document and file system sprawl.

Read Post

Egnyte

Read more about Collaborate Seamlessly with Egnyte and Google Workspace

Security Incident Containment with Teleport Session and Identity Locking

Sep 10, 2021 By Sakshyam Shah In Teleport

What would you do when a security incident is detected? Shut down the servers? Pull out the power cord from the data center? When an incident is detected, both the incident method and the time required to contain an incident are essential to limit the damage. The slower you are to react, the more damage an incident would incur. And a service downtime to contain an incident can cost businesses even more than a security incident itself.

Read Post

Teleport

Read more about Security Incident Containment with Teleport Session and Identity Locking

Clearing Up Elements of Cloud Security | Ep 24

Sep 10, 2021 By Tripwire In Tripwire

In this episode, Tripwire's Brent Holder and Raymond Kirk discuss what cloud security means today. Breaking down the different aspects of cloud security controls, they cover the technology, security implications and risks with cloud use.

View Video

Tripwire

Read more about Clearing Up Elements of Cloud Security | Ep 24

Ask SME Anything: Does SASE offer any benefit if my organization is still on-premise?

Sep 9, 2021 By Netskope In Netskope

In this episode of Ask SME (Subject Matter Expert) Anything, Netskope’s Vidur Ramnarayan discusses how SASE can benefit any organization whether they are on-premise, fully in the cloud, or somewhere in between. Netskope, the SASE leader, safely and quickly connects users directly to the internet, any application, and their infrastructure from any device, on or off the network. With CASB, SWG, and ZTNA built natively in a single platform, Netskope is fast everywhere, data centric, and cloud smart, all while enabling good digital citizenship and providing a lower total-cost-of-ownership.

View Video

Netskope

Read more about Ask SME Anything: Does SASE offer any benefit if my organization is still on-premise?

Understanding Security Service Edge (SSE) and SASE

Sep 9, 2021 By Jason Clark In Netskope

The SASE journey requires reliable partners with truly integrated platform capabilities, not vendors wielding smoke-and-mirrors-style marketing proclaiming “SASE” in giant headlines. But clarity is critical, and both SASE and the more-recently-coined security service edge (SSE) terminology, can be a little confusing.

Read Post

Netskope

Read more about Understanding Security Service Edge (SSE) and SASE

Securing Amazon EKS Anywhere with Sysdig

Sep 8, 2021 By Eric Carter In Sysdig

Amazon EKS Anywhere is a new deployment option for Amazon Elastic Kubernetes Service that lets you create and operate Kubernetes clusters on-premises. With it, you can run containerized workloads in whatever location best serves your business. Carefully considering what’s needed for security will help you reduce risk and safeguard against potential threats.

Read Post

Sysdig

Read more about Securing Amazon EKS Anywhere with Sysdig

How the Cloud-Native Journey is Changing the CISO's Role

Sep 8, 2021 By Girish Bhat In Sumo Logic

As part of the move to the cloud, everything in the enterprise is being transformed—from infrastructure all the way to modern application development. Nowhere is this change more important than in the role of the CISO.

Read Post

Sumo Logic

Read more about How the Cloud-Native Journey is Changing the CISO's Role

Securing Your Cloud Future

Sep 8, 2021 By Splunk In Splunk

Today, cloud and digital transformations have changed our environments dramatically and the old way of doing security just isn’t cutting it. It’s time for a new approach. Join us to hear from our VP of Security Products, Jane Wong and Head of Intelligence Platform, Patrick Coughlin how you can build an analytics-fueled, automation-driven and cloud-delivered security operation with Splunk Security Cloud.

View Video