%term

The latest News and Information on CyberSecurity for Applications, Services and Infrastructure, and related technologies.

Automatic Vulnerability Remediation in Java Dependencies: A New Standard for DevSecOps

Sep 2, 2024 By OpsMatters In OpsMatters

In enterprise Java applications, every vulnerability in a third-party library can have serious consequences - from data breaches to business process disruption. Traditionally, remediation could take weeks, leaving organizations exposed to risk during that time.

Read Post

OpsMatters

Read more about Automatic Vulnerability Remediation in Java Dependencies: A New Standard for DevSecOps

How MDR Services Can Optimize Threat Intelligence

Aug 30, 2024 By David Bunting In ChaosSearch

Managed Detection and Response (MDR) services play a critical role in cybersecurity. These technologies remotely monitor, detect, and respond to threats, blending threat intelligence with human expertise to hunt down and neutralize potential risks. However, one of the biggest challenges MDRs face is managing the sheer volume and variety of threat intelligence data they receive. This data comes from internal resources and the numerous security technologies their customers use, making it difficult to create a cohesive picture of the threat landscape.

Read Post

ChaosSearch

Read more about How MDR Services Can Optimize Threat Intelligence

Avoiding the Costs of a Cyberattack | Security Insights Ep. 42

Aug 30, 2024 By Ivanti In Ivanti

Avoiding the Costs of a Cyberattack | Security Insights Ep. 42 Ivanti's Chris Goettl (VP of Product, Patch Management) welcomes back Robert Waters (Lead PMM, Exposure Management) to cover the dreaded costs of a cyberattack, and how organizations can work to proactively avoid them by addressing three strategic imperatives: attack surface, vulnerability prioritization, and data silos. Ivanti finds, heals, and protects every device, everywhere – automatically. Whether your team is down the hall or spread around the globe, Ivanti makes it easy and secure for them to do what they do best.

View Video

Ivanti

Read more about Avoiding the Costs of a Cyberattack | Security Insights Ep. 42

What is Linux Patch Management? Overview & Best Practices

Aug 30, 2024 By Lauren Ballejos In NinjaOne

In this article, you will learn more about what is Linux Patch Management, its importance, common challenges, key components, tools, and effective strategies. Managing patches is necessary to maintain a secure, stable and high-performing Linux environment. Whether you’re a systems administrator, IT manager, or responsible for keeping Linux systems running smoothly, mastering the process of identifying, testing, and deploying patches plays an important role in safeguarding your infrastructure.

Read Post

NinjaOne

Read more about What is Linux Patch Management? Overview & Best Practices

HIPAA Compliance 101: Securing Patient Data with DevOps

Aug 30, 2024 By Morgan Perry In Qovery

In healthcare, protecting patient data isn’t just a requirement—it’s essential. As a tech lead or DevOps professional, understanding HIPAA compliance is crucial. This guide breaks down the essentials and shows how DevOps practices can streamline the process.

Read Post

Qovery

Read more about HIPAA Compliance 101: Securing Patient Data with DevOps

Feature Friday #25: Unprivileged execution

Aug 30, 2024 By Nick Anderson In CFEngine

Generally, cf-agent runs as a privileged user. But did you know that you can also run as an unprivileged user? A major benefit of running cf-agent unprivileged is the ability to prototype policies during development. However, attempting to execute cf-agent as an unprivileged user without proper configuration will result in errors.

Read Post

CFEngine

Read more about Feature Friday #25: Unprivileged execution

Top 7 Challenges in Unified Endpoint Management Solutions

Aug 30, 2024 By OpsMatters In OpsMatters

Discover the top 7 challenges in Unified Endpoint Management (UEM) solutions, from security concerns to scalability issues, and learn how to address these key obstacles for seamless device management.

Read Post

OpsMatters

Read more about Top 7 Challenges in Unified Endpoint Management Solutions

How to Get Started with a Security Data Lake

Aug 29, 2024 By David Bunting In ChaosSearch

Modern SecOps teams use Security Information and Event Management (SIEM) software to aggregate security logs, detect anomalies, hunt for threats, and enable rapid incident response. While SIEMs enable accurate, near real-time detection of threats, today's SIEM solutions were never designed to handle the volume of security data organizations generate daily. As daily log ingestion grows, so do the costs of data management.

Read Post

ChaosSearch

Read more about How to Get Started with a Security Data Lake

Beyond the Blue Screen: Insights from the Microsoft-CrowdStrike Incident

Aug 29, 2024 By Squadcast Community In Squadcast

In the wake of the Microsoft-CrowdStrike incident on July 19, 2024, Squadcast community has been actively reflecting on the lessons learned from this disruptive event. This global outage, affecting 8.5 million Windows machines, has served as a critical case study for incident management and operational resilience.

Read Post

Squadcast

Read more about Beyond the Blue Screen: Insights from the Microsoft-CrowdStrike Incident

STIG hardening on Ubuntu 22.04 with Ubuntu Security Guide

Aug 29, 2024 By Canonical In Canonical

In this webinar, Henry Coggill will showcase USG (the Ubuntu Security Guide) and demonstrate how it can automate compliance requirements. We will discuss the hardening profiles that are available, including DISA-STIG and CIS benchmarks, then cover setting up and configuring the tool and demonstrate the configuration options that you can make for maximum security and coverage of the STIG rules.

View Video