Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

mend

What is the KEV Catalog?

Sep 19, 2024 By AJ Starita In Mend
With external threats looming as a constant source of potential disruption, multiple government agencies have coordinated to compile a catalog of Known Exploited Vulnerabilities (KEV). The Known Exploited Vulnerabilities Catalog, or KEV catalog, is a database of actively exploited vulnerabilities, including those that have been exploited by ransomware campaigns, that can help application security professionals in the public and private sectors monitor threats and prioritize fixes.
Read Post

Navigating Access Challenges in Kubernetes-Based Infrastructure

Sep 19, 2024 By Teleport In Teleport
Organizations often find that as they deploy their K8S infrastructure into production and across their company, what worked well for managing access during development does not scale efficiently. Research shows that this often leads to serious security risks including breaches. So, new access challenges emerge, particularly as teams scale. Join us for a 30-minute deep dive into how to secure access to Kubernetes-based environments including clusters, databases, and applications in a scalable way.
View Video
teleport

How to Implement Scalable Access Controls with RBAC: Best Practices for Zero Trust Environments

Sep 18, 2024 By William Loy In Teleport
In the arms race to secure environments, codifying permissions often becomes an afterthought in the wake of setting up a new access tool. I often speak with organizations that either don’t know who has permission to what, or have no permission definitions at all. I once onboarded an enterprise level digital communications company that was losing productivity trying to keep track of who had access to their Kubernetes resources.
Read Post

Empowering Teams for Better Security: A Conversation with Jigar Shah - Secrets of AppSec Champions

Sep 17, 2024 By Mend In Mend
Developing a Security Culture: In today's highly digital and interconnected world, cybersecurity isn't just an IT issue; it's everyone's responsibility. Creating a robust security culture within your organization involves integrating security awareness into your daily operations. Train your employees, provide adequate resources, and define clear roles and responsibilities for security champions and influencers.
View Video
armo

Top open-source CSPM projects to secure your cloud infrastructure

Sep 17, 2024 By Oshrat Nir In ARMO
As more organizations move their critical infrastructure to the cloud, ensuring security has become a top priority. This is where Cloud Security Posture Management (CSPM) comes in. CSPM solutions validate the configuration of cloud services from a security perspective, ensuring alignment with best practices and compliance frameworks such as CIS Benchmarks, PCI-DSS, NIST, and others.
Read Post

Customize Your Team's Remediation Messages In ggshield

Sep 15, 2024 By GitGuardian In GitGuardian
We are very proud to announce that you can now easily provide your own custom remediation messages in ggshield, the GitGuardian CLI. Earlier versions of ggshield offered the same general remediation advice to all users if a secret was detected when using git hooks for automated scanning.
View Video
CalCom

Disable SSLv2: When older is not better

Sep 15, 2024 By Ben Balkin In CalCom
Secure Sockets Layer (SSL) is a technology that encrypts data sent between a user's browser and a website or application on a server. The purpose of SSL is to secure the information preventing eavesdropping and tampering. Originally released in 1995, SSLv2 is a protocol used to encrypt data sent over the internet, ensuring that the information remains private and secure.
Read Post
CloudCasa

Enhancing Edge Environment Data Protection with CloudCasa, AKS, and Azure Arc

Sep 14, 2024 By Ryan Kaw In CloudCasa
As businesses continue to embrace the flexibility and scalability of cloud-native applications managed by Azure Kubernetes Service (AKS), ensuring robust data protection for them across diverse locations, including edge environments, becomes paramount. For organizations leveraging Kubernetes at the edge with Azure Arc, the need for a comprehensive and easily managed backup and disaster recovery solution is crucial.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.