%term

CVE-2023-49103, CVE-2023-49104, and CVE-2023-49105: Multiple Critical Vulnerabilities in ownCloud

Dec 7, 2023 By Steven Campbell In Arctic Wolf

On November 21, 2023, ownCloud published advisories on three security vulnerabilities. The most severe of these vulnerabilities is an information disclosure vulnerability tracked as CVE-2023-49103 (CVSS: 10). The vulnerability is within the “graphapi” extension and is due to a library it relies on. The library provides a URL that when accessed discloses configuration details regarding the PHP environment including environment variables.

Read Post

Arctic Wolf

Read more about CVE-2023-49103, CVE-2023-49104, and CVE-2023-49105: Multiple Critical Vulnerabilities in ownCloud

Scale Your Vendor Risk Management Program with Automation

Dec 7, 2023 By Caitlin Postal In UpGuard

As your business grows and you work with more third-party vendors, you need to ensure security and stability across your entire vendor supply chain. With hundreds, if not thousands, of external vendors, it can be daunting and time-consuming for teams to compile all the necessary data about each vendor, evaluate the vendor's impact, and take action to ensure compliance with organizational needs.

Read Post

UpGuard

Read more about Scale Your Vendor Risk Management Program with Automation

The Developer Relationship to Security

Dec 7, 2023 By JFrog In JFrog

Moran dives into what her view is on Developers and the relationship they have with security today. As security gets more complex, the Developer's job today isn't easy and they are asked to do a lot more than they are used to.

View Video

JFrog

Read more about The Developer Relationship to Security

CSO wish list for Developers

Dec 7, 2023 By JFrog In JFrog

The four things the CSO of today's modern organization wishes their Developers did more of and how to do them.

View Video

JFrog

Read more about CSO wish list for Developers

WEBINAR MOMENT: Do Not Push This To Production

Dec 7, 2023 By GitGuardian In GitGuardian

A fun moment from GitGuardian's Ethical Hacking Webinar with Snyk's Sonya Moisset. Sonya finds code that shouldn't have been pushed to production.

View Video

GitGuardian

Read more about WEBINAR MOMENT: Do Not Push This To Production

WEBINAR MOMENT: Trying a Directory Traversal Hack

Dec 7, 2023 By GitGuardian In GitGuardian

A clip from GitGuardian's webinar on Ethical Hacking. Special guest, Snyk's Sonya Moisset, uses a directory traversal hack to get much deeper into the app's source code than should ever be allowed.

View Video

GitGuardian

Read more about WEBINAR MOMENT: Trying a Directory Traversal Hack

Splunk SOAR Logic Loops Demo

Dec 7, 2023 By Splunk In Splunk

Logic Loops are a feature in Splunk SOAR that allow users to reduce the operational complexity of building and maintaining playbooks that require repeatable looping functionalities without having to write their own custom code. This iterative function allows users to automatically retry playbook actions if they fail, or continue with the rest of the playbook when the action succeeds. This function can be applied to use cases like sandbox engines for malicious URL quarantine and remediation as well as forensic investigation workflows.

View Video

Splunk

Read more about Splunk SOAR Logic Loops Demo

The Hower - Episode 4: Clare Loveridge, Vice President and General Manager, EMEA, at Arctic Wolf.

Dec 7, 2023 By Arctic Wolf In Arctic Wolf

In this episode, our hosts sit down with Clare Loveridge, Vice President and General Manager, EMEA, at Arctic Wolf. Clare is an internationally focused global leader with more than 20 years experience in sales and channel leadership roles at companies like data domain and Nimble Storage where she's grown businesses across EMEA. Clare was the first person hired in the EMEA region at Arctic Wolf to start the region almost 3 years ago.

View Video

Arctic Wolf

Read more about The Hower - Episode 4: Clare Loveridge, Vice President and General Manager, EMEA, at Arctic Wolf.

How to Meet Cyber Insurance Requirements When All Identities Are at Risk

Dec 7, 2023 By John Natale and Ryne Laster In CyberArk

The growing frequency and sophistication of cyberattacks, especially on the ransomware front, have compelled even more companies to seek cyber insurance coverage. But as the need for coverage grows, so do the complexities. Even though we’re seeing a trend in which premiums have flattened, with expectations that this will continue as a market correction occurs, significant challenges remain for companies seeking coverage.

Read Post

CyberArk

Read more about How to Meet Cyber Insurance Requirements When All Identities Are at Risk

What To Do if Your Credit Card Information Is on the Dark Web

Dec 7, 2023 By Aranza Trevino In Keeper

If your credit card information is on the dark web you need to immediately contact your credit card issuer, monitor your online accounts for any suspicious activity or transactions, check your credit report and place a fraud alert on your credit report as an extra precaution. Continue reading to learn how your credit card information could have gotten on the dark web and how to keep your credit card information safe in the future.

Read Post

Keeper

Read more about What To Do if Your Credit Card Information Is on the Dark Web

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

CVE-2023-49103, CVE-2023-49104, and CVE-2023-49105: Multiple Critical Vulnerabilities in ownCloud

Scale Your Vendor Risk Management Program with Automation

The Developer Relationship to Security

CSO wish list for Developers

WEBINAR MOMENT: Do Not Push This To Production

WEBINAR MOMENT: Trying a Directory Traversal Hack

Splunk SOAR Logic Loops Demo

The Hower - Episode 4: Clare Loveridge, Vice President and General Manager, EMEA, at Arctic Wolf.

How to Meet Cyber Insurance Requirements When All Identities Are at Risk

What To Do if Your Credit Card Information Is on the Dark Web

Monthly Archive

Follow Us