%term

Proactively Hardening Systems: Application and Version Hardening

Oct 8, 2018 By Megan Freshley In Tripwire

The first article in this series examined configuration hardening, essentially looking at ports, processes and services as the “doors, gates and windows” into a network where security configuration management (SCM) becomes the job of determining which of these gateways should be open, closed, or locked at any given time. Now it’s time to look at application and version hardening.

Read Post

Tripwire

Read more about Proactively Hardening Systems: Application and Version Hardening

Tripwire For DevOps External Registry And Alert Capability

Oct 8, 2018 By Ben Layer In Tripwire

Although many organizations are shifting security to the left and embracing the integration of security tools into their continuous integration / continuous delivery pipelines, there are others who have different wants and needs.

Read Post

Tripwire

Read more about Tripwire For DevOps External Registry And Alert Capability

Five top tips for booking a penetration test

Oct 5, 2018 By Joseph Poppy In Bulletproof

Last week, we spoke about the common issues that come up throughout a penetration test. We left out what many of our penetration testers think of as the ‘biggest issues’, however, as the finished article rivalled Dickens at his wordiest. Still, they’re definitely worth raising, as some of the most common issues that emerge from a penetration test don’t involve misconfigurations, vulnerabilities or hacking of any kind.

Read Post

Bulletproof

Read more about Five top tips for booking a penetration test

Weekly Cyber Security News 05/10/2018

Oct 5, 2018 By Kevin In ionCube24

A selection of this week’s more interesting vulnerability disclosures and cyber security news. Development frameworks are wonderful, can’t disagree there, they do make life easier by taking away tedious process. Obviously their increased complexity in hiding this tedium from the dev means debugging can be tricky at times. So they often included some quite revealing debug modes that can help…. Only that they really are for the eyes of the dev and not the public.

Read Post

ionCube24

Read more about Weekly Cyber Security News 05/10/2018

Fastly Integration With Netacea

Oct 4, 2018 By Netacea In Netacea

The Fastly Netacea direct integration allows you to benefit from the power of Fastly’s, fast, secure and scalable edge cloud platform and plugin Netacea’s Adaptive Threat architecture, our powerful machine learning can be harnessed to detect bots and mitigate at the edge, without impacting performance.

View Video

Netacea

Read more about Fastly Integration With Netacea

Vulnerability Scanning vs. Penetration Testing

Oct 4, 2018 By Babar Mahmood In Tripwire

It amazes me how many people confuse the importance of vulnerability scanning with penetration testing. Vulnerability scanning cannot replace the importance of penetration testing, and penetration testing on its own cannot secure the entire network. Both are important at their respective levels, needed in cyber risk analysis and are required by standards such as PCI, HIPAA and ISO 27001.

Read Post

Tripwire

Read more about Vulnerability Scanning vs. Penetration Testing

Cross-Site Request Forgery (CSRF) explained

Oct 3, 2018 By Detectify In Detectify

What is CSRF and how can you fix it? Fredrik explains how CSRF is created and how it can be used to exploit a user or a website. He also provides tips on how to mitigate it.

View Video

Detectify

Read more about Cross-Site Request Forgery (CSRF) explained

Don't Use Production Data In Your Test Environment: The Impact Of Leaked Test Credentials

Oct 3, 2018 By Kaushik Sen In UpGuard

To deliver technology products and services, companies use multiple technology environments so that changes, updates, and testing can be completed in a controlled way without interrupting customer experience. This is a best practice approach that maintains high levels of system stability, uptime and security. These “non-production”, or test environments should ideally be completely disconnected from production environments to prevent security incidents and bugs.

Read Post

UpGuard

Read more about Don't Use Production Data In Your Test Environment: The Impact Of Leaked Test Credentials

What you should do after a spear phishing attack

Oct 3, 2018 By Veriato In Veriato

We all know information security is complicated and multi-faceted. You have plans to defend you from countless types of attacks and threats, but the risk is still there. Spear phishing is a common threat and your organization should have a plan of how to respond in the event of this type of attack.

Read Post

Veriato

Read more about What you should do after a spear phishing attack

The Netacea Virtual Waiting Room

Oct 2, 2018 By Netacea In Netacea

Netacea’s Virtual Waiting Room is a cloud-based service that sits in front of your website, mobile app and APIs, controlling the flow of visitors. Guarantee a positive customer omni-channel experience even under extreme conditions such as Black Friday. The use of online services has revolutionised the way we consume everything every day, which has made life great! What’s not so great though is when these services cannot meet the consumer demand that they generate, and then become unavailable.

View Video

Netacea

Read more about The Netacea Virtual Waiting Room

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

%term

Proactively Hardening Systems: Application and Version Hardening

Tripwire For DevOps External Registry And Alert Capability

Five top tips for booking a penetration test

Weekly Cyber Security News 05/10/2018

Fastly Integration With Netacea

Vulnerability Scanning vs. Penetration Testing

Cross-Site Request Forgery (CSRF) explained

Don't Use Production Data In Your Test Environment: The Impact Of Leaked Test Credentials

What you should do after a spear phishing attack

The Netacea Virtual Waiting Room

Monthly Archive

Follow Us