DevOps

Overcoming CVE Shock with Effective Kubernetes Vulnerability Scanning

Jan 23, 2024 By Oshrat Nir In ARMO

ARMO’s new feature revolutionizes Kubernetes vulnerability scanning based on eBPF technology to help Kubernetes and DevSecOps practitioners focus on fixing the vulnerabilities that impact their security posture the most.

Read Post

ARMO

Read more about Overcoming CVE Shock with Effective Kubernetes Vulnerability Scanning

CloudCasa January Feature Updates

Jan 23, 2024 By Bob Adair In CloudCasa

Happy New Year! Close on the heels of our December update, we are back again with our first major release of 2024. It packs quite a few improvements in user experience as well as a major change to our service plans. Read on for more details.

Read Post

CloudCasa

Read more about CloudCasa January Feature Updates

Ultimate Guide to Hardening User Account Control Settings & Boosting Windows Security (2024)

Jan 22, 2024 By John Gates In CalCom

User Account Control (UAC) plays a crucial role in Windows security by mitigating the risk of malware. It accomplishes this by restricting the capacity of malicious code to run with administrator privileges. The CIS benchmark 2.3.17 for User Account Control (UAC) specifically addresses the security configuration settings related to UAC on Windows operating systems. We will discuss in this blog CIS benchmarks for.

Read Post

CalCom

Read more about Ultimate Guide to Hardening User Account Control Settings & Boosting Windows Security (2024)

Risks of source code leakage

Jan 22, 2024 By GitGuardian In GitGuardian

Attackers are always after your source code! Source code is very leaky and often contains sensitive information like secrets (APi keys or credentials).

View Video

GitGuardian

Read more about Risks of source code leakage

Interactive Logon Security Settings: A Comprehensive Guide

Jan 21, 2024 By John Gates In CalCom

In interactive login, users directly engage with the computer system through a user interface, commonly achieved by logging in via a graphical user interface (GUI) or a command line interface (CLI).

Read Post

CalCom

Read more about Interactive Logon Security Settings: A Comprehensive Guide

How Jaguar Land Rover and Asda are Building a Modern DevSecOps Culture

Jan 19, 2024 By Snyk In Snyk

Organizations at different stages of growth or maturity will have different challenges when adopting a modern DevSecOps program. In this session we talked with Mike Welsh, Lead Enterprise Security Architect DevSecOps, at JLR, and Ruta Baltiejute, DevSecOps Lead at Asda, about their differing approach to implementing a secure development model at their organizations. We discussed the significant differences between how they’re building software today, including their approach to change in People, Process and Tooling.

View Video

Snyk

Read more about How Jaguar Land Rover and Asda are Building a Modern DevSecOps Culture

What is DAST (Dynamic Application Security Testing) 60 sec explainer

Jan 19, 2024 By GitGuardian In GitGuardian

Discover the Power of DAST in Cybersecurity | Dynamic Application Security Testing Explained In the digital age, cyber threats are a constant concern. Protecting your organization's data and systems is paramount, and that's where DAST (Dynamic Application Security Testing) comes into play!

View Video

GitGuardian

Read more about What is DAST (Dynamic Application Security Testing) 60 sec explainer

What Existing Security Threats Do AI and LLMs Amplify? What Can We Do About Them?

Jan 19, 2024 By Maciej Mensfeld In Mend

In my previous blog post, we saw how the growth of generative AI and Large Language Models has created a new set of challenges and threats to cybersecurity. However, it’s not just new issues that we need to be concerned about. The scope and capabilities of this technology and the volume of the components that it handles can exacerbate existing cybersecurity challenges. That’s because LLMs are deployed globally, and their impact is widespread.

Read Post

Mend

Read more about What Existing Security Threats Do AI and LLMs Amplify? What Can We Do About Them?

Are you looking for vulnerabilities in the right places?

Jan 18, 2024 By Ben Hirschberg In ARMO

With the rapid pace of technological evolution, ensuring security within the systems we operate and the software we deploy has never been more crucial. In the world of vulnerability management, we’ve moved from scanning Linux hosts to scrutinizing container images. However, are we looking for vulnerabilities in the right places?

Read Post

ARMO

Read more about Are you looking for vulnerabilities in the right places?

BoxyHQ 2023 Changelog: Enhancing Security with Retraced-Powered Audit Logs

Jan 17, 2024 By Schalk Neethling In BoxyHQ

BoxyHQ's audit logs are powered by Retraced which, in the true spirit of open source, is also a collaboration between us and Replicated. While this project did not have the same level of activity as SAML Jackson, it is a critical component of our offering and we are excited to share some of the highlights from 2023. Instead of doing a list by quarter, for this one we will just do a list of notable new features, fixes, and changes in chronological order starting in February 2023.

Read Post

BoxyHQ

Read more about BoxyHQ 2023 Changelog: Enhancing Security with Retraced-Powered Audit Logs

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

DevOps

Overcoming CVE Shock with Effective Kubernetes Vulnerability Scanning

CloudCasa January Feature Updates

Ultimate Guide to Hardening User Account Control Settings & Boosting Windows Security (2024)

Risks of source code leakage

Interactive Logon Security Settings: A Comprehensive Guide

How Jaguar Land Rover and Asda are Building a Modern DevSecOps Culture

What is DAST (Dynamic Application Security Testing) 60 sec explainer

What Existing Security Threats Do AI and LLMs Amplify? What Can We Do About Them?

Are you looking for vulnerabilities in the right places?

BoxyHQ 2023 Changelog: Enhancing Security with Retraced-Powered Audit Logs

Monthly Archive

Follow Us