%term

How Vanta migrated MDM platforms in just 3 days

Nov 2, 2023 By Vanta In Vanta

In this series, you’ll hear directly from Vanta’s own Security, Enterprise Engineering, and Privacy, Risk, & Compliance Teams to learn about our approach to keeping Vanta secure. We’ll also share some guidance for teams of all sizes — whether you’re just getting started or looking to uplevel your operations.

Read Post

Vanta

Read more about How Vanta migrated MDM platforms in just 3 days

3 Ways to Reduce SOC Alert Fatigue

Nov 2, 2023 By Laura In SenseOn

Why do 67% of SOC analysts feel like a new job or even a new career sounds like a good idea right now? The reason: alerts. Or, to be more specific, the fact that the time it takes for SOC analysts to deal with security alerts and tickets exceeds the amount of time they have available. The name for this phenomenon is alert fatigue.

Read Post

SenseOn

Read more about 3 Ways to Reduce SOC Alert Fatigue

WatchGuard Joins Data Privacy Framework Program

Nov 2, 2023 By The Editor In WatchGuard

Our customers benefit from streamlined transactions as WatchGuard has joined the EU-U.S. Data Privacy Framework (DPF), the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. DPF. This allows our European Economic Area (EEA) and UK customers to freely transfer personal data to WatchGuard in the U.S.

Read Post

WatchGuard

Read more about WatchGuard Joins Data Privacy Framework Program

South Korean IT Firm Conspired With North Korean Hackers, Stole $2.5M Via Ransomware

Nov 2, 2023 By Cybercrime Prosecution Weekly In ImmuniWeb

Read also: Nigeria dismantles cybercrime recruiting and mentoring hub, two Russians charged over JFK taxi dispatch hack, and more.

Read Post

ImmuniWeb

Read more about South Korean IT Firm Conspired With North Korean Hackers, Stole $2.5M Via Ransomware

Rego for beginners: Introduction to Rego

Nov 2, 2023 By Becki Lee In Snyk

This blog post series offers a gentle introduction to Rego, the policy language from the creators of the Open Policy Agent (OPA) engine. If you’re a beginner and want to get started with writing Rego policy as code, you’re in the right place. In this three-part series, we’ll go over the following.

Read Post

Snyk

Read more about Rego for beginners: Introduction to Rego

What does Biden's Executive Order on AI safety measures mean for businesses?

Nov 2, 2023 By Liqian Lim () In Snyk

On October 30, U.S. President Joseph Biden issued a sweeping Executive Order (“EO”) focused on making AI safer and more accountable.

Read Post

Snyk

Read more about What does Biden's Executive Order on AI safety measures mean for businesses?

SAST vs. DAST for Security Testing: Unveiling the Differences

Nov 2, 2023 By Jenny Buckingham In Veracode

Application Security Testing (AST) encompasses various tools, processes, and approaches to scanning applications to uncover potential security issues. Static Application Security Testing (SAST) and Dynamic Application Security Testing (DAST) are popularly used security testing approaches that follow different methodologies of scanning application codes across different stages of a software development lifecycle.

Read Post

Veracode

Read more about SAST vs. DAST for Security Testing: Unveiling the Differences

Cisco IOS XE Privilege Escalation (CVE-2023-20198) - Cato's analysis and mitigation

Nov 2, 2023 By Vadim Freger In Cato Networks

All secured webservers are alike; each vulnerable webserver running on a network appliance is vulnerable in its own way. On October 16th 2023 Cisco published a security advisory detailing an actively exploited vulnerability (CVE-2023-20198) in its IOS XE operating system with a 10 CVSS score, allowing for unauthenticated privilege escalation and subsequent full administrative access (level 15 in Cisco terminology) to the vulnerable device.

Read Post

Cato Networks

Read more about Cisco IOS XE Privilege Escalation (CVE-2023-20198) - Cato's analysis and mitigation

CISO Panel Discussion on Application Security

Nov 2, 2023 By Indusface In Indusface

In this CISO panel discussion, join Kiran Belsekar, EVP – CISO & IT governance, Aegon Life, Manoj Srivastava, CISO, Future Generali and Ashish Tandon, Founder and CEO, Indusface. They cover a variety of topics including: Top challenges facing the office of the CISO Alert fatigue and steps to reduce it Top threat vectors faced by the insurance industry in India The rising threat of LLMs API security and best practices to secure APIs Fighting the perception battle and positioning security teams as business enablers Cutting through vendor noise and picking the right tech stack.

View Video

Indusface

Read more about CISO Panel Discussion on Application Security

Get More Out of Mend.io with Repository Integrations

Nov 2, 2023 By Mend In Mend

How do you build a successful AppSec program? Today, we’re focusing on an area where we have great evidence for a specific best practice – Repository Integration. Choosing where to deploy SCA scans can have a major impact on the success of your AppSec program. You can boost the value of Mend SCA by scanning in your repositories, and we want to show you how!

View Video

Mend

Read more about Get More Out of Mend.io with Repository Integrations

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

How Vanta migrated MDM platforms in just 3 days

3 Ways to Reduce SOC Alert Fatigue

WatchGuard Joins Data Privacy Framework Program

South Korean IT Firm Conspired With North Korean Hackers, Stole $2.5M Via Ransomware

Rego for beginners: Introduction to Rego

What does Biden's Executive Order on AI safety measures mean for businesses?

SAST vs. DAST for Security Testing: Unveiling the Differences

Cisco IOS XE Privilege Escalation (CVE-2023-20198) - Cato's analysis and mitigation

CISO Panel Discussion on Application Security

Get More Out of Mend.io with Repository Integrations

Monthly Archive

Follow Us