Vulnerability

Everything you need to know about the new features in VSS & MVP

Aug 15, 2022 By Mieng Lim In AT&T Cybersecurity

Since AT&T launched its Vulnerability Scanning Service (VSS) in 2012, in partnership with DDI/HelpSystems, over 30 million devices have been scanned. The VSS provides vulnerability management services that help organizations identify vulnerabilities on their network and manage their swift remediation. Similarly, the AT&T Managed Vulnerability Program (MVP), launched in late 2020, allows organizations to assess their network without hiring IT professionals.

Read Post

AT&T Cybersecurity

Read more about Everything you need to know about the new features in VSS & MVP

Threat Actor of the Month - GhostSec

Aug 12, 2022 By Gerard, Jacobo In Outpost 24

This month we’re introducing you to GhostSec, a hacktivist group with ties to the Anonymous collective

Read Post

Outpost 24

Read more about Threat Actor of the Month - GhostSec

Learn How to Get Started with Snyk in Less Than 1 Minute | Fast and Free

Aug 12, 2022 By Snyk In Snyk

Getting started with Snyk is fast and free. Nope, it's not a free trial. It's a free tier that you can use for personal projects or for work!

View Video

Snyk

Read more about Learn How to Get Started with Snyk in Less Than 1 Minute | Fast and Free

A Day in The Life of a Food Giant CISO - Sherif Mansour

Aug 11, 2022 By Snyk In Snyk

During this live stream we had a conversation with the director of Information Security at Just Eat Takeaway Sherif Mansour, where we explored his day-to-day activities and how Snyk's products help him to perform his role.

View Video

Snyk

Read more about A Day in The Life of a Food Giant CISO - Sherif Mansour

Introducing Snyk Training, our online learning platform

Aug 11, 2022 By Michele Wiedemer In Snyk

Snyk has officially launched Snyk Training, a free online resource to help developers and security teams learn how to implement, configure, and use Snyk on their own. The initial content in Snyk Training focuses on three learning needs: The platform is an easy way for teams to get an introduction to Snyk tools and user best practices. Most courses take between 3 and 10 minutes, and have been described by a customer as, a “very good overview on how to get started with the Snyk journey!”

Read Post

Snyk

Read more about Introducing Snyk Training, our online learning platform

CVE-2022-20842 & CVE-2022-20827 - Critical Vulnerabilities in Cisco Small Business Routers

Aug 10, 2022 By Sule Tatar In Arctic Wolf

On Wednesday, August 3, 2022, Cisco disclosed two critical-severity vulnerabilities (CVE-2022-20842 and CVE-2022-20827) impacting RV160, RV260, RV340, and RV345 series small business routers. Both vulnerabilities are due to insufficient validation but differ in how they are exploited.

Read Post

Arctic Wolf

Read more about CVE-2022-20842 & CVE-2022-20827 - Critical Vulnerabilities in Cisco Small Business Routers

Controlling your server with a reverse shell attack

Aug 10, 2022 By Brian Vermeer In Snyk

Creating and running an application in your favorite language is usually pretty simple. After you create your application, deploying it and showing it to the world is also quite straightforward. The last thing you need is someone to take over your system and fully control your brand new application. In this article, I’ll explain how this can happen with a reverse shell attack. Note that the code examples in this article are for educational purposes only.

Read Post

Snyk

Read more about Controlling your server with a reverse shell attack

Stranger Danger: Your JavaScript Attack Surface Just Got Bigger

Aug 10, 2022 By Snyk In Snyk

Building JavaScript applications today means that we take a step further from writing code. We use open-source dependencies, create a Dockerfile to deploy containers to the cloud, and orchestrate this infrastructure with Kubernetes. Welcome, you're a cloud native application developer! As developers, our responsibility broadened, and more software means more software security concerns for us to address.

View Video

Snyk

Read more about Stranger Danger: Your JavaScript Attack Surface Just Got Bigger

Snyk ranked #20 on 2022 Forbes Cloud 100 list

Aug 9, 2022 By Jeff Yoshimura In Snyk

On behalf of the entire Snyk community, I am excited to share that Forbes has named Snyk to the Forbes Cloud 100 list for the third consecutive year, coming in at #20 — which is 19 spots higher than last year! The full list was unveiled this morning.

Read Post

Snyk

Read more about Snyk ranked #20 on 2022 Forbes Cloud 100 list

Introducing Snyk Auto-Issues for Jira: a new open source application for automated issue creation

Aug 9, 2022 By Carwin Young In Snyk

One of the things I’ve grown accustomed to as a developer is fiddling around with new languages or frameworks I find interesting. So naturally, working with our partners to launch Snyk Apps is right in my wheelhouse. At work and on my own time, I enjoy trying to build something that others might find interesting or useful. As a Jira user myself, I decided to take a look at Atlassian’s Forge platform and see what I could do with it.

Read Post