Technology

APIs: Risks and security solutions

Sep 15, 2022 By Stefanie Shank In AT&T Cybersecurity

APIs have become a vital part of doing business. Organizations increasingly rely on the use of APIs for day-to-day workflows, particularly as cloud applications become something of a mainstay. A recent report found that the average number of APIs per company increased by 221% in 2021. Not only are APIs impossible to ignore, but the need to invest in API security cannot be overlooked. The trend in usage is closely followed by opportunists seeking ways to exploit vulnerabilities for their gain.

Read Post

AT&T Cybersecurity

Read more about APIs: Risks and security solutions

6 best practices to stay secure in the hybrid cloud

Sep 15, 2022 By AlgoSec

Every year we witness more organizations of all sizes investing more in the cloud. A recent report by the Cloud Security Alliance and AlgoSec shows that over half of organizations are running 41% or more of their workload in the public cloud, and 62% of organizations are running multi-cloud environments. With organizations running workloads in complex hybrid networks - public, private, and on-premises networks - the security landscape is getting even more complex. There are actions you can take, though, to help you dissolve the complexities.

Get EBook

AlgoSec

Read more about 6 best practices to stay secure in the hybrid cloud

Strong Authentication Considerations for Digital, Cloud-First Businesses

Sep 14, 2022 By Tripwire Guest Authors In Tripwire

Authentication as a baseline security control is essential for organizations to know who and what is accessing corporate resources and assets. The Cybersecurity and Infrastructure Security Agency (CISA) states that authentication is the process of verifying that a user’s identity is genuine.

Read Post

Tripwire

Read more about Strong Authentication Considerations for Digital, Cloud-First Businesses

CyRC Vulnerability Advisory: Denial-of-service vulnerabilities (CVE-2022-39063) in Open5GS

Sep 14, 2022 By Qiang Li In Synopsys

CVE-2022-39063 is a vulnerability in the Open5GS project, an open source implementation of 5G components. The Synopsys Cybersecurity Research Center (CyRC) has exposed a denial-of-service vulnerability in Open5GS. Open5GS is an open source project that provides LTE and 5G mobile packet core network functionalities with an AGPLv3 or commercial license. It can be used to build private LTE/5G telecom networks by individuals or telecom network operators.

Read Post

Synopsys

Read more about CyRC Vulnerability Advisory: Denial-of-service vulnerabilities (CVE-2022-39063) in Open5GS

FedRAMP: The journey to cloud secure operations

Sep 14, 2022 By George Gerchow In Sumo Logic

For many years, the U.S. government was hesitant about moving data and applications to the public cloud. Concerns around security were prevalent. Today, cloud has become a central proposition of IT spend in government institutions. With the government urging federal agencies to move to the cloud for its agility, scalability, and cost efficiency, those agencies need access to FedRAMP®-authorized vendors.

Read Post

Sumo Logic

Read more about FedRAMP: The journey to cloud secure operations

Sysdig CSPM remediates security issues in seconds

Sep 14, 2022 By Sysdig In Sysdig

Automate security issue fixes in seconds and reduce cloud risk with Sysdig. Let's dig in! We know cloud teams have tons of security issues. You can be spending hours trying to understand if those findings pose a real risk in your cloud environment. So, how can you shorten the time needed to triage every misconfiguration and take action on those that really matter to you? Discover how Sysdig aggregates security findings by root cause and prioritizes remediation based on impact and risk.

View Video

Sysdig

Read more about Sysdig CSPM remediates security issues in seconds

Westcon-Comstor announces new EMEA distribution agreement with Proofpoint

Sep 13, 2022 By Westcon-Comstor

New collaboration delivers Proofpoint's email and cloud security solutions to channel community, with phased rollout across regions in EMEA.

Read Post

Read more about Westcon-Comstor announces new EMEA distribution agreement with Proofpoint

Snyk's State of Cloud Security Report Reveals 80% of Organizations Have Experienced a Severe Cloud Security Incident in Past Year

Sep 13, 2022 By Snyk In Snyk

Research Also Underscores Risk Is Growing, While Increased Cloud Security Investment Leads to Faster Application Deployment.

Read Post

Snyk

Read more about Snyk's State of Cloud Security Report Reveals 80% of Organizations Have Experienced a Severe Cloud Security Incident in Past Year

Announcing the 2022 State of Cloud Security report from Snyk

Sep 13, 2022 By Megan Moore In Snyk

Cloud computing has created the most profound shift in information technology in recent memory. Leveraging cloud technology, companies can build, deploy, and scale their applications faster than ever. But the adoption of cloud native tools and processes also brings new security challenges. Between complex cloud infrastructure and the expansion of cloud-based services, malicious actors have access to a bigger attack surface than they did even a few years ago.

Read Post

Snyk

Read more about Announcing the 2022 State of Cloud Security report from Snyk

Highlighting New Advanced Security Capabilities for Netskope Cloud Firewall

Sep 13, 2022 By Brian Tokuyoshi In Netskope

One of the benefits of a secure access service edge (SASE) framework is that organizations can dramatically simplify the implementation of security services without having to go through constant network redesigns and appliance operating system updates.

Read Post