Technology

What We See for 2023-Predictions for Cloud Security & Beyond

Nov 17, 2022 By Netskope Staff In Netskope

As the new year draws closer, we’ve asked our experts here at Netskope to see what they have on their radar for 2023. Similar to years past, we’ve broken these predictions out into “Long Shots,” more out-there predictions we think could potentially happen in the next year, and “Trending Topics,” predictions around topics you may have seen discussed a bit this year but digging into how we expect them to evolve. Here’s what our experts see for 2023.

Read Post

Netskope

Read more about What We See for 2023-Predictions for Cloud Security & Beyond

An Eye for an API

Nov 16, 2022 By Michael Betti In Tripwire

If the eyes are the window to the soul, then the Application Programming Interface (API) is the window to the software. After all, an API is a way for products to communicate with each other through a documented interface, just as the eye is a human interface, communicating with the outside world (but it’s not as well-documented as to meanings).

Read Post

Tripwire

Read more about An Eye for an API

Cloud Abuse: New Technique Using Adobe Acrobat to Host Phishing

Nov 16, 2022 By Gustavo Palazolo In Netskope

Netskope Threat Labs recently discovered a phishing campaign that is abusing Adobe Acrobat to host a Microsoft Office phishing page. While abusing free cloud services to host malicious content is a popular attack technique, this is the first time we have seen Adobe Acrobat used to deliver malicious content. The attack starts with a phishing email that lures the user into opening a PDF file that redirects them to an Adobe Acrobat URL.

Read Post

Netskope

Read more about Cloud Abuse: New Technique Using Adobe Acrobat to Host Phishing

Torq Joins the Cloud Security Alliance

Nov 16, 2022 By Eldad Livni In Torq

We’re extremely happy to announce that Torq has joined the Cloud Security Alliance (CSA), the world’s leading organization dedicated to defining and raising awareness of best practices to help ensure a secure cloud computing environment. The CSA has more than 80,000 members worldwide and has been endorsed by the American Presidential Administration, which selected the CSA Summit as the venue for announcing the federal government’s cloud computing strategy.

Read Post

Torq

Read more about Torq Joins the Cloud Security Alliance

CrowdStrike Cloud Infrastructure Entitlement Management (CIEM)

Nov 16, 2022 By CrowdStrike In CrowdStrike

Identity theft and overly permissive accounts are major challenges faced by organizations in public and hybrid cloud environments. Learn how CrowdStrike Cloud Identity and Entitlement Management (CIEM) can increase the security of your cloud infrastructure while simplifying management across clouds.

View Video

CrowdStrike

Read more about CrowdStrike Cloud Infrastructure Entitlement Management (CIEM)

CrowdStrike Cloud Infrastructure Entitlement Management (CIEM)

Nov 16, 2022 By CrowdStrike In CrowdStrike

Identity theft and overly permissive accounts are major challenges faced by organizations in public and hybrid cloud environments. Learn how CrowdStrike Cloud Infrastructure Entitlement Management (CIEM) can increase the security of your cloud infrastructure while simplifying management across clouds.

View Video

CrowdStrike

Read more about CrowdStrike Cloud Infrastructure Entitlement Management (CIEM)

Device Authority releases breakthrough Edge and SBOM capabilities in KeyScaler 7.0

Nov 15, 2022 By Device Authority In Device Authority

Major IoT platform release brings device and data trust, compliance, and automation to complex Edge environments and supply chains, extending Zero Trust capabilities to secure IT to OT environments.

Read Post

Device Authority

Read more about Device Authority releases breakthrough Edge and SBOM capabilities in KeyScaler 7.0

Bridging the DevSecOps Application Connectivity Disconnect via IaC

Nov 15, 2022 By Anat Kleinmann, Sr. Product Manager In AlgoSec

Anat Kleinmann, AlgoSec's Sr. Product Manager and IaC expert, discusses how incorporating Infrastructure-as-Code into DevSecOps can allow teams to take a preventive approach to secure application connectivity.

Read Post

AlgoSec

Read more about Bridging the DevSecOps Application Connectivity Disconnect via IaC

The "Software Vulnerability Snapshot" reports that 95% of tests uncovered vulnerabilities in target apps

Nov 15, 2022 By Fred Bals In Synopsys

Learn about the key takeaways from the “Software Vulnerability Snapshot” report, which examines security issues uncovered in web and mobile apps.

Read Post

Synopsys

Read more about The "Software Vulnerability Snapshot" reports that 95% of tests uncovered vulnerabilities in target apps

How Sysdig is Using the ThreatQ Platform to Enhance Cloud Threat Detection and Response

Nov 15, 2022 By Mike Clark In ThreatQuotient

It is always interesting to learn about real-world examples of technologies at work. So, when ThreatQuotient invited me to share how we at Sysdig are using the ThreatQ Platform to enhance our cloud detection and response solutions, I was happy to participate.

Read Post