%term

MOSE: Using Configuration Management for Offensive and Defensive Security

Feb 13, 2020 By Tripwire Guest Authors In Tripwire

Post-exploitation can be one of the most time-consuming but worthwhile tasks that an offensive security professional engages in. Fundamentally, it is where you are able to demonstrate what an adversary may do if they compromise a business. A big component of this is trying to get as far as you can without alerting the defenders to what you’re doing.

Read Post

Tripwire

Read more about MOSE: Using Configuration Management for Offensive and Defensive Security

Playing defense against Gamaredon Group

Feb 13, 2020 By Daniel Stepanic In Elastic

For several months, the Intelligence & Analytics team at Elastic Security has tracked an ongoing adversary campaign appearing to target Ukranian government officials. Based on our monitoring, we believe Gamaredon Group, a suspected Russia-based threat group, is behind this campaign. Our observations suggest a significant overlap between tactics, techniques, and procedures (TTPs) included within this campaign and public reporting.

Read Post

Elastic

Read more about Playing defense against Gamaredon Group

Customizing Errors in Node.js

Feb 13, 2020 By Mark Michon In Bearer

Javascript's built in Error provides useful information, but can often feel lacking in clarity. One-size-fits-all is great for the language, but we can do better in our own apps. That's where custom errors come in.

Read Post

Bearer

Read more about Customizing Errors in Node.js

Redscan a winner at TEISS Awards 2020

Feb 13, 2020 By Redscan In Redscan

It was a successful night for Redscan at the TEISS Awards 2020, with the company receiving honours for two of its key services.

Read Post

Redscan

Read more about Redscan a winner at TEISS Awards 2020

CCPA Exemptions: The California Consumer Privacy Act and the Gramm-Leach-Bliley Act

Feb 13, 2020 By Thea Corteza In RiskOptics

A change is coming for privacy protection. Are you ready? For the past twenty years, most financial services businesses fell under the requirements of the Gramm-Leach-Bliley Act (GLB Act or GLBA). This law federally governed the collection and disclosure of customers’ personal financial information. However, on January 1st, 2020, a new privacy rule—the California Consumer Privacy Act (CCPA)—wentis going into effect.

Read Post

RiskOptics

Read more about CCPA Exemptions: The California Consumer Privacy Act and the Gramm-Leach-Bliley Act

RDS: Do Not Allow LPT Port Redirection

Feb 12, 2020 By CalCom In CalCom

This policy specifies whether to prevent the redirection of data to client LPT ports during a Remote Desktop Services session. You can use this setting to prevent users from mapping local LPT ports and redirecting data from the remote computer to local LPT port peripherals. If a value is configured to Disabled or Not Configured, the attacker can leverage it to map the client’s LPT ports. In addition, he can use the port to redirect data from the Terminal Server to the local LTP ports.

View Video

CalCom

Read more about RDS: Do Not Allow LPT Port Redirection

Code Sight IDE Plugin Combines SAST and SCA to Analyze Proprietary and Open Source Code | Synopsys

Feb 12, 2020 By Synopsys In Synopsys

Until now, single analysis tools have given developers only a partial view of security risks – providing either static analysis of proprietary code or software composition analysis of open source. This separation often leads to undetected vulnerabilities, decreased developer productivity, and longer release cycles.

View Video

Synopsys

Read more about Code Sight IDE Plugin Combines SAST and SCA to Analyze Proprietary and Open Source Code | Synopsys

Simplify Healthcare Compliance with HITRUST

Feb 12, 2020 By Tripwire In Tripwire

Trying to keep up with managing multiple standards like HIPAA, PCI and NIST simultaneously? The HITRUST CSF takes the guesswork out of compliance for organizations across multiple industries by incorporating common standards like these into one comprehensive, overarching framework.

View Video

Tripwire

Read more about Simplify Healthcare Compliance with HITRUST

A Guide to Digital Privacy for You and Your Family

Feb 12, 2020 By Tripwire Guest Authors In Tripwire

Having worked with many individuals responding to incidents where their digital private images were shared without consent, social media or email accounts had unauthorised access, and even physical safety was a concern, it is all too familiar how terrifying the unknown can be. As someone who has been on both the victim’s and later the responder’s side, I am qualified to express both the terror and knowledge of things you can do to take back control.

Read Post

Tripwire

Read more about A Guide to Digital Privacy for You and Your Family

Supercharging Workload Security in Your K8s Cluster

Feb 12, 2020 By Vaibhav Thakur In Tigera

2019 was a big year for Kubernetes adoption, and 2020 is sure to exceed that pace. Already, we have seen a large number of organizations migrating their workloads to Kubernetes (k8s) both in public and private clouds as they embrace a hybrid cloud strategy. With so much at stake, what are you currently using for network security inside your k8s cluster?

Read Post

Tigera

Read more about Supercharging Workload Security in Your K8s Cluster

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

%term

MOSE: Using Configuration Management for Offensive and Defensive Security

Playing defense against Gamaredon Group

Customizing Errors in Node.js

Redscan a winner at TEISS Awards 2020

CCPA Exemptions: The California Consumer Privacy Act and the Gramm-Leach-Bliley Act

RDS: Do Not Allow LPT Port Redirection

Code Sight IDE Plugin Combines SAST and SCA to Analyze Proprietary and Open Source Code | Synopsys

Simplify Healthcare Compliance with HITRUST

A Guide to Digital Privacy for You and Your Family

Supercharging Workload Security in Your K8s Cluster

Monthly Archive

Follow Us