DevOps

Teleport 8 - Demo

Dec 16, 2021 By Teleport In Teleport

Quick Demo of Teleport 8.

View Video

Teleport

Read more about Teleport 8 - Demo

How to Become a Certified Kubernetes Administrator?

Dec 16, 2021 By Jonathan Kaftzan In ARMO

Without a doubt, Kubernetes is the most prominent container orchestration tool. And you’ve probably noticed that many positions available to IT professionals require Kubernetes experience. One way to gain or prove your Kubernetes knowledge is by becoming a Certified Kubernetes Administrator (CKA). This certification is issued by the Cloud Native Computing Foundation (CNCF) in collaboration with the Linux Foundation. They offer three Kubernetes related certifications.

Read Post

ARMO

Read more about How to Become a Certified Kubernetes Administrator?

Ensure 'Store passwords using reversible encryption' is set to 'Disabled'

Dec 15, 2021 By Keren Pollack In CalCom

Password storage and encryption are an essential part of your password policy. Reversible encryption is known for being vulnerable to attacks. Therefore, it is crucial to map its usage and try to avoid it as much as possible.

Read Post

CalCom

Read more about Ensure 'Store passwords using reversible encryption' is set to 'Disabled'

Introduction to JFrog Xray

Dec 15, 2021 By JFrog In JFrog

JFrog Xray is a universal software composition analysis (SCA) solution that natively integrates with Artifactory as part of the JFrog Platform. Xray gives developers and DevSecOps teams an easy way to proactively identify open source vulnerabilities and license compliance violations before they manifest in production.

View Video

JFrog

Read more about Introduction to JFrog Xray

Log4j Log4Shell Vulnerability: All You Need To Know

Dec 15, 2021 By JFrog In JFrog

On December 9, 2021, a researcher from the Alibaba Cloud Security Team dropped a zero-day remote code execution exploit on Twitter, targeting the extremely popular log4j logging framework for Java. Since then, the trivially exploitable (weaponized PoCs are available publicly) and extremely popular library has reportedly been massively exploited and has gotten wide coverage on media and social networks.

View Video

JFrog

Read more about Log4j Log4Shell Vulnerability: All You Need To Know

Kroger Uses JFrog Xray for Software Security and License Compliance

Dec 15, 2021 By JFrog In JFrog

Kroger leverages the JFrog platform to give developers visibility into their software vulnerabilities and make informed decisions on what to fix. See how Kroger has implemented secure DevOps processes with automated vulnerability scanning and open-source software (OSS) license compliance capabilities to support their development and security teams.

View Video

JFrog

Read more about Kroger Uses JFrog Xray for Software Security and License Compliance

2022 Cloud-native Trends: Need for AuthZ and OPA Will Grow

Dec 15, 2021 By Eileen Kemp In Styra

It’s that time of year again — full of ugly sweaters, holiday cookies and technology predictions (cloud-native style)! Last year, we predicted that we’d see continued Kubernetes adoption, focus on DevSecOps in organizations and open source dominance. This year, we sat down with our co-founder and CTO, Tim Hinrichs and our CEO Bill Mann to hear a few of their predictions for the open source and cloud-native authorization market.

Read Post

Styra

Read more about 2022 Cloud-native Trends: Need for AuthZ and OPA Will Grow

Fireside Chat: Log4j and Injection Flaws

Dec 15, 2021 By Snyk In Snyk

Join us for a fireside chat with Micah Silverman, Snyk's Director of DevSecOps Acceleration, and Vandana Verma, Security Relations Leader at Snyk, as we answer your #Log4Shell questions: What is it and how does it affect us? How do I find and fix the #Log4J vulnerability? What can other language ecosystems learn from this? We'll also talk about the OWASP Top 10 and injection flaws.

View Video

Snyk

Read more about Fireside Chat: Log4j and Injection Flaws

Introducing Teleport Access Plane for Linux and Windows Hosts

Dec 15, 2021 By Ben Arent In Teleport

We are excited to welcome Windows hosts to the Teleport Access Plane. For the past 5 years we’ve helped refine our Access Plane for Linux hosts, providing short-lived certificate-based access, RBAC and developer-friendly access to resources. As we’ve rolled Teleport to larger organizations, we found that people wanted the same convenience and security of Teleport but for Windows hosts.

Read Post

Teleport

Read more about Introducing Teleport Access Plane for Linux and Windows Hosts

Snyk gives warning: update your Apache Log4j software immediately

Dec 14, 2021 By Snyk In Snyk

Last Friday, a critical vulnerability was discovered in the popular open source software, Apache Log4j 2. Developer-first security company, Snyk, warns of the potentially large impact on companies.

Read Post

Snyk

Read more about Snyk gives warning: update your Apache Log4j software immediately

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

DevOps

Teleport 8 - Demo

How to Become a Certified Kubernetes Administrator?

Ensure 'Store passwords using reversible encryption' is set to 'Disabled'

Introduction to JFrog Xray

Log4j Log4Shell Vulnerability: All You Need To Know

Kroger Uses JFrog Xray for Software Security and License Compliance

2022 Cloud-native Trends: Need for AuthZ and OPA Will Grow

Fireside Chat: Log4j and Injection Flaws

Introducing Teleport Access Plane for Linux and Windows Hosts

Snyk gives warning: update your Apache Log4j software immediately

Monthly Archive

Follow Us