Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

DevOps

styra

OPA vs. XACML: Which Is Better for Authorization?

Aug 30, 2022 By Will Seaton In Styra

Modern microservices applications built using containers are complex — often requiring complex authorization solutions, due to the sheer number of access possibilities involved. Indeed, as IT infrastructure has migrated to the cloud, along with the applications running on it, security and privacy concerns have only increased. As microservice applications became ubiquitous, open-source authorization tools have come to the fore for many organizations.

Read Post

How Malicious NPM Packages Make Your Apps Vulnerable

Aug 30, 2022 By Snyk In Snyk
During this live stream we had a conversation with Zbyszek Tenerowicz (ZB) where he discuss how we can be susceptible to malicious packages as developers. Didn't catch the live stream? Ask all of your Snyk questions, and we’ll do our very best to answer them in the comment section. Snyk helps software-driven businesses develop fast and stay secure. Continuously find and fix vulnerabilities for npm, Maven, NuGet, RubyGems, PyPI and more.
View Video

Building Modern Access-Control for Cloud Applications with Or Weis | SnykLIVE Recording

Aug 29, 2022 By Snyk In Snyk
With the growing complexity of modern applications and microservices based architectures getting access-control right has become a huge ongoing pain-point, as companies find themselves reimplementing access-control over and over. Solutions are found in the new tool sets of policy as code, as well as the 5 best practices and open-source tools (e.g. OPA, OPAL, Zanzibar) we can use to face the challenge.
View Video

BlackHat 2022 key takeaways - Everything you need to know from BlackHat 25

Aug 26, 2022 By GitGuardian In GitGuardian
Slides - BlackHat 25 was big, with hundreds of briefings, training sessions, vendor booths, and of course, parties, it is hard to get to everything. That's why this year we are covering the key trends and takeaways from the briefings of the 25th installment of BlackHat. This video covers 4 main takeaways This video covers a lot of different talks but if you want more information see links below to interesting blogs and whitepapers.
View Video
teleport

Securing Cloud Infrastructure with Teleport and AWS Identity Federation

Aug 25, 2022 By Janakiram MSV In Teleport

Over the last decade, enterprises have accelerated the adoption of the cloud. According to the State of the Cloud report by Flexera, the average annual spend on cloud computing is over $62 million. As enterprises continue to invest in the cloud, AWS, the market leader in cloud computing, is growing at a rapid pace. The rise of cloud computing poses new challenges to enterprise IT. With each department migrating and managing their workloads in AWS, there is a proliferation of accounts, users and roles.

Read Post

PyPi Malware Stealing Discord and Roblox Payment Info

Aug 25, 2022 By Snyk In Snyk
Raul Onitza-Klugman, Senior Security Researcher at Snyk, joins Kyle to take a deep dive in to the latest set of malicious packages discovered by the Snyk Security Research team. Join us as we discuss how these findings came to be, what they mean for open source security, and some hypotheses about the future of supply chain security.
View Video

Stranger Danger: Your Java Attack Surface Just Got Bigger

Aug 24, 2022 By Snyk In Snyk
Building Java applications today means that we take a step further from writing code. We use open-source dependencies, create a Dockerfile to deploy containers to the cloud, and orchestrate this infrastructure with Kubernetes. Welcome, you're a cloud native application developer! As developers, our responsibility broadened, and more software means more software security concerns for us to address.
View Video

Copyright © 2024 OpsMatters™. All rights reserved.