GraphQL is a query language for APIs that provides a powerful and efficient way to query and manipulate data. As powerful and versatile as GraphQL is, its downside is that it can be vulnerable to certain security threats. In this presentation, we will discuss the security vulnerabilities associated with GraphQL, from the basics to more advanced threats, and how to best protect against them. After this presentation, attendees will have a better understanding of security vulnerabilities in GraphQL, as well as an understanding of the steps needed to protect against them.

In today's Tanium Tech Talk see how to configure and deploy Microsoft Defender for Endpoint (#MDE) across #Windows, #MacOS, and #Linux at speed and scale. Enjoy this walk-through from the recent Converge lab accompanied by a Tanium Resource Center article with step-by-step instructions.

Our head of adversarial simulation, Max Corbridge explains what is a purple team exercise and the benefits to an organisation.

This weeks' briefing covers: Dive deeper: Additional Resources: July 11 2023 Cyber Threat Intelligence Briefing: July 10 2023 Cyber Threat Intelligence Briefing.

Our Head of Adversarial Simulation, Max Corbridge explains what is Adversarial Simulation and why is it valuable in cyber security. And why today a point in time penetration test is not enough.

In the first episode of 2024, Bill and Robin dive into a vulnerability impacting SSH across the world, as well as explore how something in your pocket may get you unwarranted attention. What is the Terrapin attack, and why should you leave your FlipperZero in check-in luggage? Learn all this and more on the latest episode of the Ring of Defense!

This is the first video in a series that we’ll be doing around Kubernetes Security Fundamentals. We’ll discuss some of the complexities of Kubernetes Security, and also a bit about what we’ll be covering in the series. For more information, see our blog post on Datadog Security Labs.

This video describes open source license notices, why they are required and how to set the notice within the Mend SCA user interface.

Container scanning tools, industry publications, and application security experts are constantly telling us about best practices for how to build our images and run our containers. Often these non-functional requirements seem abstract and are not described well enough for those of us that don’t have an appsec background to fully understand why they are important.