%term

How to Connect to Microsoft SQL Server Remotely Using Teleport

Sep 14, 2022 By Teleport In Teleport

In this video, we'll look at how to connect Teleport to Microsoft SQL Server with Active Directory authentication. We'll also be exploring Teleport's RBAC system, Audit logs, as well as how to connect a GUI like Azure Data Studio, SSMS, or Datagrip to our database via Teleport. Some of the mentioned resources may already be set up or active in your environment. If so, feel free to utilize the timestamps below to maximize your situation.

View Video

Teleport

Read more about How to Connect to Microsoft SQL Server Remotely Using Teleport

Sysdig CSPM remediates security issues in seconds

Sep 14, 2022 By Sysdig In Sysdig

Automate security issue fixes in seconds and reduce cloud risk with Sysdig. Let's dig in! We know cloud teams have tons of security issues. You can be spending hours trying to understand if those findings pose a real risk in your cloud environment. So, how can you shorten the time needed to triage every misconfiguration and take action on those that really matter to you? Discover how Sysdig aggregates security findings by root cause and prioritizes remediation based on impact and risk.

View Video

Sysdig

Read more about Sysdig CSPM remediates security issues in seconds

What is Zero Trust?

Sep 14, 2022 By Netskope In Netskope

What is Zero Trust? Clear up the confusion about Zero Trust with help from Netskope's field CTO and former Gartner Analyst, Steve Riley.

View Video

Netskope

Read more about What is Zero Trust?

Strong Authentication Considerations for Digital, Cloud-First Businesses

Sep 14, 2022 By Tripwire Guest Authors In Tripwire

Authentication as a baseline security control is essential for organizations to know who and what is accessing corporate resources and assets. The Cybersecurity and Infrastructure Security Agency (CISA) states that authentication is the process of verifying that a user’s identity is genuine.

Read Post

Tripwire

Read more about Strong Authentication Considerations for Digital, Cloud-First Businesses

NIST SP 800-171 Compliance Guide for Colleges & Universities

Sep 14, 2022 By Kyle Chin In UpGuard

‍ NIST Special Publication 800-171 (NIST SP 800-171 or NIST 800-171) is a set of security controls within the NIST Cybersecurity Framework that establishes baseline security standards for federal government organizations. NIST SP 800-171 is mandatory for all non-government organizations operating with federal information systems.

Read Post

UpGuard

Read more about NIST SP 800-171 Compliance Guide for Colleges & Universities

What is Cyber Vendor Risk Management? Cyber VRM Explained

Sep 14, 2022 By Harsh Budholiya In UpGuard

Cyber VRM is the practice of identifying, assessing, and remediating the cybersecurity risks of third-party vendors. This involves combining objective, quantifiable data sources like security ratings and data leak detection with subjective qualitative data sources like security questionnaires and other security evidence to get a complete view of your third-party vendors’ security posture. A Cyber VRM solution facilitates this practice.

Read Post

UpGuard

Read more about What is Cyber Vendor Risk Management? Cyber VRM Explained

Stranger Danger: Your JavaScript Attack Surface Just Got Bigger

Sep 14, 2022 By Snyk In Snyk

Building JavaScript applications today means that we take a step further from writing code. We use open-source dependencies, create a Dockerfile to deploy containers to the cloud, and orchestrate this infrastructure with Kubernetes. Welcome - you're a cloud native application developer! As developers, our responsibility has broadened, and more software means more software security concerns for us to address.

View Video

Snyk

Read more about Stranger Danger: Your JavaScript Attack Surface Just Got Bigger

Lorenz Ransomware Intrusion: Understanding Your Risk

Sep 14, 2022 By Arctic Wolf In Arctic Wolf

The Arctic Wolf Labs team recently investigated a Lorenz ransomware intrusion, which leveraged a Mitel MiVoice VOIP appliance vulnerability (CVE-2022-29499) for initial access and Microsoft’s BitLocker Drive Encryption for data encryption. Lorenz is a ransomware group that has been active since at least February 2021 and like many ransomware groups, performs double-extortion by exfiltrating data before encrypting systems. Over the last quarter, the group has primarily targeted small and medium businesses (SMBs) located in the United States, with outliers in China and Mexico.

View Video

Arctic Wolf

Read more about Lorenz Ransomware Intrusion: Understanding Your Risk

CrowdStrike's Annual Threat Hunting Report Reveals One Potential Intrusion Is Identified Every Seven Minutes

Sep 13, 2022 By CrowdStrike In CrowdStrike

Findings from Falcon Overwatch threat hunters showed faster breakout times by eCrime adversaries and one million malicious events were prevented by the CrowdStrike Falcon platform.

Read Post