Security

The latest News and Information on CyberSecurity for Applications, Services and Infrastructure, and related technologies.

What's new in Avantra 24.2

Jul 26, 2024 By Oliver Rogers In Avantra

It's my pleasure to announce the release of Avantra 24.2. The second update of Avantra 24, building upon 24.1 which brought performance and customer requested bug fixes, 24.2 brings new innovations and enhancements to our Avantra platform. With over 300 changes in our development management system, Avantra 24.2 feels like a major release to us and we have something new everywhere you look. Let's dive deeper into the new features.

Read Post

Avantra

Read more about What's new in Avantra 24.2

Cyber Defense 202: Exploit Vulnerabilities | Security Insights Ep. 41

Jul 26, 2024 By Ivanti In Ivanti

Ivanti's Robert Waters (Lead PMM, Exposure Management) is back with Chris Goettl (VP of Product, Patch Management) for the last of our three episodes covering Verizon's 2024 Data Breach Investigations Report, covering the third-most popular attack vector in breaches today: exploit vulnerabilities. And while they may be #3 in prevalence, they're #1 in Chris' and Robert's hearts.

View Video

Ivanti

Read more about Cyber Defense 202: Exploit Vulnerabilities | Security Insights Ep. 41

Feature Friday Feature Friday #20: Macros

Jul 26, 2024 By Nick Anderson In CFEngine

Did you know CFEngine has Macros? They were first introduced in CFEngine 3.7 (back in 2015), and more have been introduced since then. Macros are convenient for preventing the parsing of a section of the policy. It is handy for protecting older binaries from getting tripped up on newer syntax the agent does not understand. Let’s take a look. Currently there are 8 macros. You can find examples of use within the Masterfiles Policy Framework.

Read Post

CFEngine

Read more about Feature Friday Feature Friday #20: Macros

A Guide to Implementing Effective Incident Response Strategies

Jul 25, 2024 By OpsMatters In OpsMatters

It's not a matter of if an incident will happen. It's a matter of when. Check out this guide to incident response strategies before the next threat strikes.

Read Post

OpsMatters

Read more about A Guide to Implementing Effective Incident Response Strategies

Can the EventSentry Agents cause the same outage & disruption like the CrowdStrike Falcon sensor did?

Jul 25, 2024 By ingmar.koecher In EventSentry

The faulty Rapid Response Content CrowdStrike update that disabled millions of Windows machines across the globe on 7/19/2024 was any IT professional’s nightmare. Having to manually visit and restore each affected machine (further complicated by BitLocker) severely limited the recovery speed, especially for businesses with remote locations, TVs, kiosks, etc.

Read Post

EventSentry

Read more about Can the EventSentry Agents cause the same outage & disruption like the CrowdStrike Falcon sensor did?

The Intersection of Identity Verification Services and Cloud Computing

Jul 25, 2024 By OpsMatters In OpsMatters

In the digital age, identity verification has become a cornerstone of online security. With the rise of remote work, e-commerce, and online services, verifying the identity of users has never been more critical. Cloud computing, with its scalability, flexibility, and accessibility, has revolutionized how identity verification services operate, providing robust solutions to meet the growing demands of various industries. This article delves into how cloud computing enhances identity verification services and the benefits it brings to businesses and consumers alike.

Read Post

OpsMatters

Read more about The Intersection of Identity Verification Services and Cloud Computing

Understanding Security Log Analytics vs. SIEM for Midsized Companies Targeted by Cybercriminals

Jul 25, 2024 By Dave Armlin In ChaosSearch

SecOps teams at midsize companies face a unique set of challenges when it comes to managing organizational cybersecurity. Midsize companies (those with 100-999 employees and $50 million-$1 billion in annual revenue, according to Gartner) possess significant financial resources and valuable data that may be targeted by digital adversaries.

Read Post

ChaosSearch

Read more about Understanding Security Log Analytics vs. SIEM for Midsized Companies Targeted by Cybercriminals

CFEngine: The agent is in 39 - Editing etc/default/grub and similar files

Jul 25, 2024 By CFEngine In CFEngine

"CFEngine: The agent is in" is our monthly webinar series, where we show new features, teach best practices, and keep the community informed about everything CFEngine.

View Video

CFEngine

Read more about CFEngine: The agent is in 39 - Editing etc/default/grub and similar files

How to authenticate with third-party APIs in your Grafana app plugin

Jul 25, 2024 By Tom Glenn In Grafana

Whether they’re for synthetic monitoring, large-language models, or some other use case, Grafana application plugins are a fantastic way to enhance your overall Grafana experience. Data for these custom experiences can come from a variety of sources, including nested data sources. However, they can also come from third-party APIs, which usually require authentication to access.

Read Post

Grafana

Read more about How to authenticate with third-party APIs in your Grafana app plugin

What Is Remote Code Execution (RCE)?

Jul 25, 2024 By Lauren Ballejos In NinjaOne

Remote Code Execution (RCE) is when an attacker runs malicious code on your IT infrastructure. The purpose of RCE ranges from further infiltrating your network, stealing information, or otherwise damaging, extorting, or stealing from you or your business. Because of this, protecting your computers and network from RCE attacks is vital. This article explains what remote code execution is, and the impacts of RCE on your business.

Read Post