%term

Snyk in 30: Open source security for Atlassian Bitbucket Cloud

Dec 15, 2022 By Marco Morales In Snyk

In our latest Snyk in 30, Jason Lane (Director of Product Marketing) and I (Marco Morales, Partner Solutions Architect) showcased Snyk Open Source with a focus on our integration with Bitbucket Cloud. They covered why open source security is vital for modern app development, along with tips on taking a holistic approach to application security that goes beyond just shifting left.

Read Post

Snyk

Read more about Snyk in 30: Open source security for Atlassian Bitbucket Cloud

Exploring the Spring Security authorization bypass (CVE-2022-31692)

Dec 15, 2022 By Brian Vermeer In Snyk

In early November, a new authorization bypass vulnerability was found in Spring Security 5. Now, before we panic let’s look into this problem to see if you are vulnerable. Although the vulnerability is classified as high, there is only a specific set of use cases that are vulnerable. This means that not everyone is vulnerable, and I will show that in a second. Regardless, the advice is to upgrade to the newer version of the Spring Security.

Read Post

Snyk

Read more about Exploring the Spring Security authorization bypass (CVE-2022-31692)

Corelight Demo Data Now in Falcon LogScale Community Edition

Dec 15, 2022 By Ken Greene In CrowdStrike

At CrowdStrike, we’re always looking for new ways to share the power of CrowdStrike Falcon® LogScale, our log management and observability solution. The latest advancement to Falcon LogScale, previously known as Humio, is adding Corelight demo data to the Falcon LogScale Community Edition.

Read Post

CrowdStrike

Read more about Corelight Demo Data Now in Falcon LogScale Community Edition

Getting IaC to work for DevSecOps

Dec 15, 2022 By AlgoSec In AlgoSec

Prof. Avishai Wool, AlgoSec Co-Founder and CTO, provides his unique perspective on the value of IaC to DevSecOps and how it can anable organizations to deploy applications faster and avoid risky configuration mistakes early in the game.

View Video

AlgoSec

Read more about Getting IaC to work for DevSecOps

Cybersquatting - Preventing, Detecting, and Responding To It

Dec 15, 2022 By Cyberint In Cyberint

Cybersquatting, or domain squatting, is registering, trafficking in, or using an internet domain name solely with the bad faith intent of profiting from the goodwill generated by a trademark that belongs to someone else. It refers to a bad faith abusive registration of a domain name in violation of someone else’s trademark rights.

Read Post

Cyberint

Read more about Cybersquatting - Preventing, Detecting, and Responding To It

Security Awareness

Dec 15, 2022 By Sedara In Sedara

Why is security awareness important when we have all of these appliances and software and hardware to protect us? Well, ultimately, attacks come down to a set of human eyes and a keyboard, and a mouse. And if a user is well educated and if they're trained well and they're astute, they can help prevent a security incident from ever happening or detect it.

View Video

Sedara

Security

Read more about Security Awareness

Webinar: Introduction To Cloud Security & IAM Policy Configuration Level Review

Dec 15, 2022 By Appknox In Appknox

Through this webinar, we aim to help enterprises & individuals understand about cloud security and I-AM policy can play a role to build safe and secure mobile apps that garner trust. It will help you to prevent sensitive data loss and infrastructure exposure, resulting in fraud, reputation damage, and regulatory penalties.

View Video

Appknox

Read more about Webinar: Introduction To Cloud Security & IAM Policy Configuration Level Review

Are You Prepared for the Windows 10 Retirement?

Dec 15, 2022 By Tanium In Tanium

The time is now to start accelerating the shift to Windows 11.

Read Post

Tanium

Read more about Are You Prepared for the Windows 10 Retirement?

The Payment Card Industry Data Security Standard

Dec 14, 2022 By Cybriant In Cybriant

As a CIO, you're likely familiar with the Payment Card Industry Data Security Standard (PCI DSS). But what do you know about it? PCI DSS is a set of requirements designed to protect credit and debit card data. It applies to anyone who processes, stores, or transmits payment card information.

Read Post

Cybriant

Read more about The Payment Card Industry Data Security Standard

Odaseva signs two-year contract with REA Group to help protect the Australian property experience

Dec 14, 2022 By Odaseva

Agreement secures the data of millions of Australians that use realestate.com.au each month and the 16 other brands in REA Group's network with powerful encryption.

Read Post

Read more about Odaseva signs two-year contract with REA Group to help protect the Australian property experience

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Snyk in 30: Open source security for Atlassian Bitbucket Cloud

Exploring the Spring Security authorization bypass (CVE-2022-31692)

Corelight Demo Data Now in Falcon LogScale Community Edition

Getting IaC to work for DevSecOps

Cybersquatting - Preventing, Detecting, and Responding To It

Security Awareness

Webinar: Introduction To Cloud Security & IAM Policy Configuration Level Review

Are You Prepared for the Windows 10 Retirement?

The Payment Card Industry Data Security Standard

Odaseva signs two-year contract with REA Group to help protect the Australian property experience

Monthly Archive

Follow Us