Technology

CVE-2024-6387: Critical Remote Code Execution Vulnerability in OpenSSH

Jul 2, 2024 By Andres Ramos In Arctic Wolf

On July 1, 2024, OpenSSH released fixes for CVE-2024-6387, a vulnerability in OpenSSH’s server (sshd) on glibc-based Linux systems allowing for potential Remote Code Execution (RCE). OpenSSH is a widely-used suite of secure networking tools based on the SSH protocol, providing encryption for secure communication and file transfers, and is essential for remote management on Unix systems. CVE-2024-6387 is a signal handler race condition that allows unauthenticated Remote Code Execution (RCE) as root.

Read Post

Arctic Wolf

Read more about CVE-2024-6387: Critical Remote Code Execution Vulnerability in OpenSSH

Streamlining MSP Success with the Power of JumpCloud

Jul 2, 2024 By JumpCloud In JumpCloud

In this JumpCloud Partner Success Interview we met with Bill Hammelman, President of CCP Technologies as he discussed specializing in state and local governments, embracing the hybrid environment, and the role of MSPs in compliance.

View Video

JumpCloud

Read more about Streamlining MSP Success with the Power of JumpCloud

How to Navigate Data Security in the GenAI Era

Jul 2, 2024 By Richard Davis In Netskope

Since its mainstream emergence in 2022, generative AI has triggered a seismic shift in data management and security. It is estimated that one in four employees now uses genAI apps daily, often unbeknownst to their employer and IT team. This raises concerns, as genAI is designed with a voracious appetite for consuming both mundane and sensitive data. Effectively securing your data as genAI becomes prevalent is a strategic imperative.

Read Post

Netskope

Read more about How to Navigate Data Security in the GenAI Era

Exploring generative AI guardrails: The Tines approach

Jul 2, 2024 By Thomas Kinsella In Tines

Innovation rarely starts with acknowledging the restrictions. It’s only after you’ve fleshed out the practical concepts that you begin to understand how they can align with the predefined boundaries, ensuring that your final product is both useful and compliant. This dynamic process encourages a more organic pathway to discovery, leading to solutions that are not only innovative but also viable within the given constraints.

Read Post

Tines

Read more about Exploring generative AI guardrails: The Tines approach

Clockwork Blue: Automating Security Defenses with SOAR and AI

Jul 1, 2024 By Trustwave In Trustwave

It’s impractical to operate security operations alone, using manual human processes. Finding opportunities to automate SecOps is an underlying foundation of Zero Trust and an essential architecture component for enterprise-scale SOCs. Let’s discuss what SOAR is, its common uses, and the future of SOAR with AI.

Read Post

Trustwave

Read more about Clockwork Blue: Automating Security Defenses with SOAR and AI

Arizona Department of Homeland Security enhances cybersecurity with Elastic's AI-driven security analytics

Jul 1, 2024 By Jared Pane In Elastic

The Arizona Department of Homeland Security (AZDOHS) operates in an environment that requires a robust cybersecurity strategy to protect against ever-evolving threats. With a mission to safeguard state and local infrastructures, the team at AZDOHS faced the daunting task of monitoring an expansive array of data points and potential vulnerabilities.

Read Post

Elastic

Read more about Arizona Department of Homeland Security enhances cybersecurity with Elastic's AI-driven security analytics

10 BEST Practices for Securely Developing with AI

Jul 1, 2024 By Snyk In Snyk

AI technology is booming, but are you aware of the hidden security risks? Join us as we explore the 10 best practices to keep your use of AI safe and secure.

View Video

Snyk

Read more about 10 BEST Practices for Securely Developing with AI

Configuring Samba | JumpCloud University Tutorial (2024)

Jul 1, 2024 By JumpCloud In JumpCloud

In this tutorial, we'll cover JumpCloud Samba configurations and pair with Cloud LDAP. Enabling Samba support allows for LDAP users to authenticate to end points that require Samba attributes within the LDAP directory. To discover more resources checkout JumpCloud University where you’ll find courses, tutorial videos, engaging guided simulations, and end user content.

View Video

JumpCloud

Read more about Configuring Samba | JumpCloud University Tutorial (2024)

Kubernetes Security Fundamentals: API Security - Part 3

Jul 1, 2024 By Datadog In Datadog

In this video we’ll continue our look at the details of how Kubernetes secures the various APIs it uses, looking at the Kubelet API.

View Video

Datadog

Read more about Kubernetes Security Fundamentals: API Security - Part 3

Balancing AI Performance and Safety: Lessons from PyData Berlin

Jul 1, 2024 By Thomas Segura In GitGuardian

Would you trust AI to call 911? GitGuardian's ML engineer Nicolas posed this question at PyData Berlin, sparking a discussion on integrating ML into critical systems, debunking AI myths, and balancing innovation with safety in AI deployment.

Read Post