%term

Web Application Security: From Business Risk to Technical Defense

Nov 6, 2024 By Amit Sheps In IONIX

Web applications are many organizations’ primary point of contact with their customers, but they’re also one of their greatest vulnerabilities. Most web applications contain at least one exploitable vulnerability, and the repercussions of a successful exploit can be devastating for an organization or its customers. In this article Web application security focuses on identifying, remediating, and defending web applications to reduce an organization’s vulnerability to attack.

Read Post

IONIX

Read more about Web Application Security: From Business Risk to Technical Defense

Visma's Security Boost with Aikido: A Conversation with Nikolai Brogaard

Nov 6, 2024 By Michiel Denis In Aikido

"Aikido helps us catch the blind spots in our security that we couldn’t fully address with our existing tools. It’s been a game-changer for us beyond just the SCA (Software Composition Analysis) solutions we originally brought them in for." A little while ago, we shared that Visma chose Aikido Security for its portfolio companies. Recently, we had the pleasure of having Nicolai Brogaard, Service Owner of SAST & SCA over in our Belgian headquarters.

Read Post

Aikido

Read more about Visma's Security Boost with Aikido: A Conversation with Nikolai Brogaard

CTI Roundup: Scattered Spider and RansomHub Partner, Infostealer Malware Bypasses Chrome Patches, Evasive Panda Back in the News

Nov 6, 2024 By Tanium In Tanium

Scattered Spider partners with RansomHub, infostealers evade Chrome defenses, and Evasive Panda uses CloudScout to steal user cookies.

Read Post

Tanium

Read more about CTI Roundup: Scattered Spider and RansomHub Partner, Infostealer Malware Bypasses Chrome Patches, Evasive Panda Back in the News

Practical usage of Sysdig OSS

Nov 6, 2024 By Nigel Douglas In Sysdig

To address Sysdig’s 5/5/5 Benchmark, rapid troubleshooting and deep forensic investigation are crucial when a security breach or performance issue arises. While Falco excels at real-time threat detection based on system call activity, Sysdig serves as the go-to tool for post-incident analysis.

Read Post

Sysdig

Read more about Practical usage of Sysdig OSS

How to configure Azure Backup and Recovery

Nov 6, 2024 By BDRSuite In BDRSuite

BDRSuite offers a robust solution for Azure VM backups. It utilizes Azure snapshots and provides the added security of creating backup copies to a secondary location for enhanced data protection.

View Video

BDRSuite

Read more about How to configure Azure Backup and Recovery

Security Culture: The Best Tool Money Can't Buy

Nov 6, 2024 By Guest Expert In GitGuardian

Building positive relationships, sharing knowledge effectively, and making security "cool" are some of the most worthwhile security pursuits.

Read Post

GitGuardian

Read more about Security Culture: The Best Tool Money Can't Buy

We need better systems for vulnerability management

Nov 6, 2024 By Jason Meller In 1Password

The systems in place to manage software vulnerabilities are often overwhelming and ineffective. But that can change if teams enlist their end users to remediate vulnerabilities.

Read Post

1Password

Read more about We need better systems for vulnerability management

IAM is not (just) technology: There's real value in consistency

Nov 6, 2024 By Csaba Galffy In One Identity

There’s no way around it: program management skills are a must for any IAM leaders, lest they wish to preside over a chaotic, disorganized mess. IAM initiatives often involve complex, interconnected systems and processes – and most of all, people. Without a firm grasp of program management, leaders risk delays, overruns and a final implementation that’s more like a Frankenstein’s monster than a well-running solution.

Read Post

One Identity

Read more about IAM is not (just) technology: There's real value in consistency

CrowdStrike to Acquire Adaptive Shield to Deliver Integrated SaaS Security Posture Management

Nov 6, 2024 By Michael Sentonas In CrowdStrike

Today, at the inaugural Fal.Con Europe, I’m excited to announce CrowdStrike’s agreement to acquire SaaS security leader Adaptive Shield. This acquisition will propel CrowdStrike to become the only cybersecurity vendor to provide full protection against identity-based attacks across the modern cloud ecosystem — from on-premises Active Directory to cloud-based identity providers and the growing landscape of SaaS applications — through a single unified platform.

Read Post

CrowdStrike

Read more about CrowdStrike to Acquire Adaptive Shield to Deliver Integrated SaaS Security Posture Management

Going Rogue: APT49 Using Rogue RDP | Threat SnapShot

Nov 6, 2024 By SnapAttack In SnapAttack

In 2022, Microsoft began blocking macros originating from the internet in Office, pushing both pentesters and threat actors to explore new methods for initial access. Fast forward to October 2024, and APT29 is leveraging one of those methods—Rogue RDP—discovered as a workaround back in 2022. In this video, we dive into a recent spearphishing campaign uncovered by the Ukrainian CERT, where attackers used Rogue RDP to gain initial access to targets. This video will provide you practical detection opportunities that can be used to hunt for this activity in your environment.

View Video

SnapAttack

Read more about Going Rogue: APT49 Using Rogue RDP | Threat SnapShot

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

%term

Web Application Security: From Business Risk to Technical Defense

Visma's Security Boost with Aikido: A Conversation with Nikolai Brogaard

CTI Roundup: Scattered Spider and RansomHub Partner, Infostealer Malware Bypasses Chrome Patches, Evasive Panda Back in the News

Practical usage of Sysdig OSS

How to configure Azure Backup and Recovery

Security Culture: The Best Tool Money Can't Buy

We need better systems for vulnerability management

IAM is not (just) technology: There's real value in consistency

CrowdStrike to Acquire Adaptive Shield to Deliver Integrated SaaS Security Posture Management

Going Rogue: APT49 Using Rogue RDP | Threat SnapShot

Monthly Archive

Follow Us