Vulnerability

The Year of the Pandemic and 2021 Cybersecurity Predictions

Dec 8, 2020 By Outpost 24 In Outpost 24

2020 will always be remembered as the year our lives changed dramatically due to the Coivd-19 pandemic. Here our panel of security experts look back at the lessons learned in the past 12 months and share their predictions for the key security challenges organizations will face in 2021.

Read Post

Outpost 24

Read more about The Year of the Pandemic and 2021 Cybersecurity Predictions

Six key findings from the 'DevSecOps Practices and Open Source Management in 2020' report

Dec 8, 2020 By Fred Bals In Synopsys

This week Synopsys released the “DevSecOps Practices and Open Source Management in 2020” report, findings from a survey of 1,500 IT professionals working in cyber security, software development, software engineering, and web development. The report explores the strategies that organizations around the world are using to address open source vulnerability management, as well as the problem of outdated or abandoned open source components in commercial code.

Read Post

Synopsys

Read more about Six key findings from the 'DevSecOps Practices and Open Source Management in 2020' report

4 Things a Good Vulnerability Management Policy Should Include

Dec 7, 2020 By Matthew Jerzewski In Tripwire

Organizations face an ever-evolving threat landscape. With this in mind, it is imperative that organizations keep an up-to-date vulnerability management policy for remediating and controlling security vulnerabilities that may lead to a breach. A good vulnerability management policy should contain the following.

Read Post

Tripwire

Read more about 4 Things a Good Vulnerability Management Policy Should Include

Detectify checks for critical Oracle WebLogic Server RCEs (CVE-2020-14882, CVE-2020-14750)

Dec 3, 2020 By Detectify In Detectify

On October 29th, Detectify released a security test to detect a critical Oracle WebLogic Server RCE – CVE-2020-14882. Again in November, Oracle released an out-of-band security patch to fix a related RCE for Oracle Fusion Middleware. These vulnerabilities are currently being exploited by multiple botnets in the wild. Detectify scans your application for both of these vulnerabilities and will alert you if you are running a vulnerable version of Oracle WebLogic Server.

Read Post

Detectify

Read more about Detectify checks for critical Oracle WebLogic Server RCEs (CVE-2020-14882, CVE-2020-14750)

How to mitigate Ransomware attacks

Nov 26, 2020 By Outpost 24 In Outpost 24

Ransomware is a serious security threat affecting companies of all sizes and industries. While the symptoms (an attack) can be extremely damaging and disruptive, the solution can be simple - proactive prevention through a heavy dose of security hygiene. Here we cover the basics of Ransomware and top tips for securing your organization against it.

Read Post

Outpost 24

Read more about How to mitigate Ransomware attacks

Four requirements for open source vulnerability management in a DevOps environment

Nov 20, 2020 By Shandra Gemmiti In Synopsys

Most applications contain open source code, which can expose companies to risks if left unchecked. Make the most of your open source vulnerability management with the right approach and tooling.

Read Post

Synopsys

Read more about Four requirements for open source vulnerability management in a DevOps environment

Outpost24 webinar - Securing DevOps in Cloud Environments

Nov 19, 2020 By Outpost 24 In Outpost 24

The Covid-19 crisis has wreaked havoc on software development, with businesses being forced to adapt and ensure DevOps can carry on to the same production levels and speed as before. As IT and development infrastructure move to the public cloud at an unprecedented rate, the shared responsibility of cloud can create severe security challenges in terms of visibility, control and compliance.

View Video

Outpost 24

Read more about Outpost24 webinar - Securing DevOps in Cloud Environments

Outpost24 webinar - Risk based vulnerability management: What's in a risk score?

Nov 19, 2020 By Outpost 24 In Outpost 24

In this webinar we’ll provide expert insights into the limitation of CVSS and what goes into a vulnerability risk score, including vendor by vendor and what we look at to determine the risk of a vulnerability to help security managers prioritize and make better informed decisions for remediation. We will identify the benefits of a risk-based approach, highlighting how this can make vulnerabilities more manageable and streamlining remediation through automation and orchestration.

View Video

Outpost 24

Read more about Outpost24 webinar - Risk based vulnerability management: What's in a risk score?

Outpost24 webinar - Cloud security controls best practice

Nov 19, 2020 By Outpost 24 In Outpost 24

Watch our recorded webinar to discover the critical cloud security controls when migrating to IaaS and PaaS, plus how to build a rich cloud transformation experience and deliver long term operational benefits. As we strive to have greater controls on cloud risk, how can we spend our time more efficiently to focus on what we don’t own and building a more robust cloud operating model? Cloud Security remains a big challenge and whilst the Cloud Security Alliance (CSA) is celebrating its 11th anniversary in 2020 are we any closer to fully understanding the techniques to ensure complete cloud security coverage.

View Video

Outpost 24

Read more about Outpost24 webinar - Cloud security controls best practice

OWASP Top 10 Application Security Risks (With Examples & Recommendations)

Nov 10, 2020 By Harman Singh In Cyphere

OWASP stands for The Open Web Application Security Project. It is a non-profit foundation that works to improve application security for software. Through community-led projects globally, it is a great source for tools, resources, education & training for developers and technologists to secure the web and mobile applications. Read our article to learn more about the OWASP top 10 vulnerabilities with examples.

Read Post