%term

The latest News and Information on CyberSecurity for Applications, Services and Infrastructure, and related technologies.

Zero-Day Vulnerabilities: How to Address and Mitigate Them

Nov 10, 2023 By Lauren Ballejos In NinjaOne

No internet-connected code is truly secure. Today’s development process is deeply iterative, and this ever-shifting landscape of code can sometimes expose critical vulnerabilities. When these flaws are discovered by attackers first, zero-day exploits threaten not just your own integrity – but that of business partners and team members across the organization.

Read Post

NinjaOne

Read more about Zero-Day Vulnerabilities: How to Address and Mitigate Them

Why Implementing App Security Can Lead To Spiraling Costs

Nov 9, 2023 By Daniel Skrba In HAProxy

Robust app security is non-negotiable, but the spiraling costs that can come with it are. In the context of application delivery, security plays a pivotal role in maintaining business continuity, protecting sensitive data, and upholding a solid reputation. However, the journey to build a formidable defense at the load balancing and reverse proxy layer can quickly become costly with a few wrong turns. Security is important, but buyers don’t have to break the bank to implement it.

Read Post

HAProxy

Read more about Why Implementing App Security Can Lead To Spiraling Costs

What Is a Vulnerability Assessment & Why Is It Important?

Nov 9, 2023 By NinjaOne In NinjaOne

While cloud computing has ushered in a new era of connectivity and convenience, it has also exposed organizations to a myriad of vulnerabilities. Cyberattacks, data breaches, and security incidents have become all too common, leaving no room for complacency. The need for proactive cybersecurity measures has never been greater. It's in this context that vulnerability assessments play a vital role in safeguarding organizations against malicious threat actors.

Read Post

NinjaOne

Read more about What Is a Vulnerability Assessment & Why Is It Important?

What Is OAuth?

Nov 9, 2023 By Makenzie Buenning In NinjaOne

Securing access to online resources is more critical than ever. As applications and services become interconnected, there is an ever-increasing need for a standardized and robust authentication and authorization method. Enter OAuth, a protocol that enables secure and standardized authorization across various web services.

Read Post

NinjaOne

Read more about What Is OAuth?

Security Webinar: Navigating the Zero Trust Journey for Today's Everywhere Workplace

Nov 8, 2023 By Ivanti In Ivanti

Ivanti finds, heals, and protects every device, everywhere – automatically. Whether your team is down the hall or spread around the globe, Ivanti makes it easy and secure for them to do what they do best. Ivanti is IT for the way we work now. Integrated solutions for everything IT touches. So, employees can work better, anywhere, and everywhere.

View Video

Ivanti

Read more about Security Webinar: Navigating the Zero Trust Journey for Today's Everywhere Workplace

Git leaks, FTW

Nov 8, 2023 By Sleuth In Sleuth

Stop committing code without automatically scanning for secrets. This tip walks you through git leaks, a useful little utility in every dev's toolbelt. Give Sleuth a try and see how we give teams actionable insights on how to improve with no-code automations to instantly ship improvements, and metrics to measure their impact — all in a way that both managers and developers love.

View Video

Sleuth

Read more about Git leaks, FTW

Container Network Security Monitoring Policies for Kubernetes in Kentik Kube

Nov 8, 2023 By Kentik In Kentik

In the evolving network security and compliance landscape, staying ahead means being proactive. This brief demo shows how Kentik Kube can improve container network security monitoring in Kubernetes infrastructures.

View Video

Kentik

Read more about Container Network Security Monitoring Policies for Kubernetes in Kentik Kube

How does your AWS environment stand up to the MITRE ATT&CK framework?

Nov 7, 2023 By Tyler Diderich In Sumo Logic

In today’s digital age, adopting public cloud platforms like Amazon Web Services (AWS) security means reinforcing them. AWS is a complex and versatile platform. When problems or security incidents arise, it's important to have a systematic approach to investigation and analysis or it can quickly become noisy with lots of false positives. This is where the Adversarial Tactics, Techniques, and Common Knowledge (MITRE ATT&CK) framework can help.

Read Post

Sumo Logic

Read more about How does your AWS environment stand up to the MITRE ATT&CK framework?

The Unplanned Show, Episode 19: Cloud Security response with Ashley Ward

Nov 7, 2023 By PagerDuty In PagerDuty

As organizations move to the cloud, where is there overlap between security and IT and engineering? In this session, Dormain will sit down with Orca Security's Principal Technical Evangelist, Ashley Ward, to learn about how working practices have to evolve with the speed of change in the cloud.

View Video

PagerDuty

Read more about The Unplanned Show, Episode 19: Cloud Security response with Ashley Ward

Mastering Open Source Security: Your Guide to S2C2F

Nov 6, 2023 By Ciara Carey In Cloudsmith

Welcome to our 2nd blog in our series on how to securely consume Open Source Software (OSS). Attacks targeting OSS are on the rise, making the security of your software supply chain a top priority. The 1st blog gave an overview of some of the most common types of attacks. Today we’ll explore the Secure Supply Chain Consumption Framework (S2C2F) that can help you mitigate against these attacks.

Read Post