Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

jfrog

How to Prevent the Next Log4j Style Zero-Day Vulnerability

May 17, 2022 By Asaf Karas, Oren Ish-Shalom, Ilya Khivrich In JFrog

Software testing is notoriously hard. Search Google for CVEs caused by basic CRLF (newline character) issues and you’ll see thousands of entries. Humanity has been able to put a man on the moon, but it hasn’t yet found a proper way to handle line endings in text files. It’s those subtle corner cases that have a strong tendency of being overlooked by programmers.

Read Post

OWASP Bay Area Meetup Host Sponsored by JFrog - April 28

May 17, 2022 By JFrog In JFrog
Followed by talks Talk #1 Demystifying the SBOM’s impact on Secure Software Deployment With the White House’s cybersecurity executive order in May 2021, has the Software Bill of Materials (aka SBOMs), graduated from being a “nice to have” to a “must-have” global standard when developing and deploying secure software from the cloud? In a nutshell, SBOMs provides visibility into which components make up a piece of software and detail how it was put together, so it's easy to determine if it contains security and compliance issues. In this talk, we’ll discuss • What exactly is an SBOM? • Securing your Software Supply Chain • Why SBOM must be a key element of your software development life cycle's (SDLC) security and compliance approach • The misconceptions that exist around SBOMs • Insights and best practices on SBOM creation and usage.
View Video

Zero Trust - Replacing Depth with Logic. Identity & Access Management eSummit 2022

May 17, 2022 By Teleport In Teleport
In a hybrid work setup, workers should be able to authenticate themselves in the virtual environment securely. However, identity theft and technologies like deep fakes ensure that securing identities remains a major challenge. Organizations want to ensure their identities are safe and hack-proof. Join industry leading practitioners and experts to learn how to protect identities.
View Video
sumologic

Is your penetration testing weak? Catch hackers at your backdoor with Sumo Logic

May 17, 2022 By Melissa Sussmann In Sumo Logic
If you are an application developer or security analyst, you likely spend a lot of time thinking about your customers’ security. IT operations teams have found many ways to help secure login portals by implementing dual authentication and Single-Sign-On (SSO) portals. Many IT organizations have learned to use SSO and Two Factor Authentication (2FA) to help secure their codebase and employee data. This method is great, assuming that all users are compliant with 2FA.
Read Post
splunk

How Playbook Packs Drive Scalable Automation

May 17, 2022 By Kelby Shelton In Splunk

No matter how advanced your Security Operations Center (SOC) is, pre-built Playbook Packs from Splunk can augment your analysts with automation that scales with your organization’s maturity. SplunkⓇ Enterprise Security (ES) users can achieve this scalable automation by using a pre-built Risk Notable Playbook Pack in Splunk SOAR.

Read Post
tripwire

5 Things to know about the UK's National Cyber Security Centre (NCSC)

May 17, 2022 By Tripwire Guest Authors In Tripwire

The UK’s first cybersecurity strategy was launched in 2009 and outlined that whatever the shape of the cybersecurity mission, it made no sense to silo it away from other aspects of national security. To be effective, it had to be able to take advantage of high-grade intelligence and other security capabilities. The strategy outlined how the country needed to invest more in getting the public and private partnership really working.

Read Post

Copyright © 2026 OpsMatters™. All rights reserved.