%term

PyPi Malware Stealing Discord and Roblox Payment Info

Nov 16, 2022 By Snyk In Snyk

In this livestream we dive into the latest set of malicious packages discovered by the Snyk security research team. We are joined by senior security researcher at Snyk Raul Onitza-Klugman as we also discuss how these findings came to be, what they mean for open source security, and some hypotheses about the future of supply chain security. Didn't catch the live stream? Ask all of your Snyk questions and we’ll do our very best to answer them in the comment section.

View Video

Snyk

Read more about PyPi Malware Stealing Discord and Roblox Payment Info

Stranger Danger: Your JavaScript Attack Surface Just Got Bigger

Nov 16, 2022 By Snyk In Snyk

Building JavaScript applications today means that we take a step further from writing code. We use open-source dependencies, create a Dockerfile to deploy containers to the cloud, and orchestrate this infrastructure with Kubernetes. Welcome - you're a cloud native application developer! As developers, our responsibility has broadened, and more software means more software security concerns for us to address.

View Video

Snyk

Read more about Stranger Danger: Your JavaScript Attack Surface Just Got Bigger

How Trustwave Uses the NIST Framework to Inform Strategy and Mitigate Cybersecurity Risk

Nov 16, 2022 By Trustwave In Trustwave

The National Institute of Standards and Technology’s (NIST) Cybersecurity Framework (CSF) is one of several “gold level” standards used by public and private organizations as the basis for their cybersecurity protocols. It is also the benchmark utilized by Trustwave to protect our clients. NIST rolled out the CSF in 2014 as a set of guidelines for mitigating organizational cybersecurity risks.

Read Post

Trustwave

Read more about How Trustwave Uses the NIST Framework to Inform Strategy and Mitigate Cybersecurity Risk

Torq Joins the Cloud Security Alliance

Nov 16, 2022 By Eldad Livni In Torq

We’re extremely happy to announce that Torq has joined the Cloud Security Alliance (CSA), the world’s leading organization dedicated to defining and raising awareness of best practices to help ensure a secure cloud computing environment. The CSA has more than 80,000 members worldwide and has been endorsed by the American Presidential Administration, which selected the CSA Summit as the venue for announcing the federal government’s cloud computing strategy.

Read Post

Torq

Read more about Torq Joins the Cloud Security Alliance

The Real Cost of Cryptomining: Adversarial Analysis of TeamTNT

Nov 16, 2022 By Nicholas Lang In Sysdig

TeamTNT is a notorious cloud-targeting threat actor, who generates the majority of their criminal profits through cryptojacking. Sysdig TRT attributed more than $8,100 worth of cryptocurrency to TeamTNT, which was mined on stolen cloud infrastructure, costing the victims more than $430,000. The full impact of TeamTNT and similar entities is unknowable, but at $1 of profit for every $53 the victim is billed, the damage to cloud users is extensive.

Read Post

Sysdig

Read more about The Real Cost of Cryptomining: Adversarial Analysis of TeamTNT

Introducing Tines Labs

Nov 16, 2022 By John Tuckner In Tines

Tines empowers anyone to automate their manual work, regardless of complexity, without writing a single line of code. Many teams starting on their SOAR journey often don't know what processes can be automated and find it challenging to translate their manual work into software-based solutions. In cybersecurity, automating repetitive processes at scale is a relatively new idea with little public research to support it.

Read Post

Tines

Read more about Introducing Tines Labs

Micro Lesson: Cloud SOAR Incidents

Nov 16, 2022 By Sumo Logic In Sumo Logic

Watch a quick overview of Incidents in Cloud SOAR.

View Video

Sumo Logic

Read more about Micro Lesson: Cloud SOAR Incidents

CrowdStrike Cloud Infrastructure Entitlement Management (CIEM)

Nov 16, 2022 By CrowdStrike In CrowdStrike

Identity theft and overly permissive accounts are major challenges faced by organizations in public and hybrid cloud environments. Learn how CrowdStrike Cloud Identity and Entitlement Management (CIEM) can increase the security of your cloud infrastructure while simplifying management across clouds.

View Video

CrowdStrike

Read more about CrowdStrike Cloud Infrastructure Entitlement Management (CIEM)

Most Common Kubernetes Security Misconfigurations and How to Address Them

Nov 16, 2022 By Teleport In Teleport

There are hundreds of public cases detailing how companies leaked sensitive user data accidentally due to misconfiguration issues. Any data breach can have catastrophic effects on the business and individuals of the compromise.

View Video

Teleport

Read more about Most Common Kubernetes Security Misconfigurations and How to Address Them

Payette Fends off Cyber Breach with Rubrik Security Cloud

Nov 16, 2022 By Rubrik In Rubrik

Payette, the award-winning architecture firm behind iconic buildings of Harvard University, Boston Children's Hospital, MIT, and more, successfully fended off a potentially crippling ransomware attack. With Rubrik Security Cloud, the hacker never even had the opportunity to deliver a ransom note and the firm had critical systems back online in less than 24 hours.

View Video

Rubrik

Read more about Payette Fends off Cyber Breach with Rubrik Security Cloud

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

PyPi Malware Stealing Discord and Roblox Payment Info

Stranger Danger: Your JavaScript Attack Surface Just Got Bigger

How Trustwave Uses the NIST Framework to Inform Strategy and Mitigate Cybersecurity Risk

Torq Joins the Cloud Security Alliance

The Real Cost of Cryptomining: Adversarial Analysis of TeamTNT

Introducing Tines Labs

Micro Lesson: Cloud SOAR Incidents

CrowdStrike Cloud Infrastructure Entitlement Management (CIEM)

Most Common Kubernetes Security Misconfigurations and How to Address Them

Payette Fends off Cyber Breach with Rubrik Security Cloud

Monthly Archive

Follow Us