%term

The latest News and Information on CyberSecurity for Applications, Services and Infrastructure, and related technologies.

Secret Keys to the Password Kingdom

Nov 21, 2019 By SolarWinds In SolarWinds

Building trust with customers is a must for MSPs. And because of the unique nature of MSPs, it’s not always easy. Your customers aren’t simply giving you administrative access to a few admin accounts—they’re sharing secrets which must be securely managed across all the systems, apps, and users you manage for them. Passwords, SSH keys, licenses, cloud infrastructure logins, and SaaS portal accounts are just the beginning. To solve issues quickly, your technicians can’t waste time locating the credentials needed to resolve issues and make users happy.

View Video

SolarWinds

Read more about Secret Keys to the Password Kingdom

Now or never: Your last stand against cyber attacks.

Nov 20, 2019 By ManageEngine In ManageEngine

The Global Risks Report 2019 states that cyber attacks are one of the top five risks to global stability. In the cyber world, there are just two categories of people: one category who've realized that they've been attacked and the other category who are yet to realize. In this technology-infused world, anybody can become a hacker with just $1; that's how critical cyber security is.

View Video

ManageEngine

Read more about Now or never: Your last stand against cyber attacks.

Account Takeover IS Your Problem

Nov 20, 2019 By SolarWinds In SolarWinds

Phishing and malware are scary enough, but the number-one tactic used by bad actors to get access to and take over accounts is something different: using compromised credentials. Why? Because it’s so easy. Data breaches happen almost constantly, and credentials get leaked. At the same time, people are prone to reuse the same few passwords across all their accounts. These two facts spell trouble, as it’s almost impossible for an IT professional to know if working credentials to their company email or CRM are floating around the dark web. Almost impossible that is, until now.

View Video

SolarWinds

Read more about Account Takeover IS Your Problem

Sentry Receives SOC 2 Compliance Certification

Nov 19, 2019 By Vu Ngo In Sentry

In a world where companies’ security teams are notoriously—and rightly—paranoid, we’re pleased to announce that Sentry has recently received its SOC 2 Type I compliance certification. Having met this important industry standard on the effectiveness of a company’s internal controls around information security, our existing and future customers can be confident about their data security and integrity with Sentry.

Read Post

Sentry

Read more about Sentry Receives SOC 2 Compliance Certification

Sysdig Announces the Cloud-Native Security Hub is Available

Nov 18, 2019 By Sysdig In Sysdig

Cloud-Native Security Hub creates a home for cloud-native best practices, rules, and configurations

Read Post

Sysdig

Read more about Sysdig Announces the Cloud-Native Security Hub is Available

Announcing the Cloud Native Security Hub

Nov 18, 2019 By Jorge Salamero Sanz In Sysdig

One of the main benefits to standardized infrastructure is the ability to share application resources across entities. We are taking advantage of this with the Cloud Native Security Hub as we start to explore how to standardize cloud native security.

Read Post

Sysdig

Read more about Announcing the Cloud Native Security Hub

Security Policy as Code Now Fully Automated with Calico Enterprise 2.6

Nov 18, 2019 By Andy Wright In Tigera

We are excited to announce the general availability of Calico Enterprise 2.6 (formerly known as Tigera Secure). With this release, it is now possible to fully-automate Security-Policy-as-Code within a CI-CD pipeline, including the ability to implement security as a Canary rollout, which is the most critical requirement to automating network security.

Read Post

Tigera

Read more about Security Policy as Code Now Fully Automated with Calico Enterprise 2.6

Bar Hofesh - AppSec in the DevSecOps world

Nov 16, 2019 By JFrog In JFrog

We will discuss and tackle the issues of security in the world of sprints, how to automate menial tasks and the important role of AppSec.

View Video

JFrog

Read more about Bar Hofesh - AppSec in the DevSecOps world

Visa Security Alert for New Self-Cleaning Skimmer - Pipka

Nov 14, 2019 By Georgina Grant-Muller In RapidSpike

Visa have reported a new security alert for an advanced, self-cleaning, JavaScript skimmer named Pipka. The security researchers at Visa’s Payment Fraud Disruptions (PFD) discovered the skimmer in September earlier this year. The skimmer was first seen on a North American ecommerce website which had previously been infected with a different skimmer, Inter. Visa have now identified another 16 additional sites with hosting the Pipka code.

Read Post

RapidSpike

Read more about Visa Security Alert for New Self-Cleaning Skimmer - Pipka

Securing Google Cloud Run serverless workloads

Nov 14, 2019 By Mateo Burillo In Sysdig

Google Cloud Run is a serverless compute platform that automatically scales your stateless containers. In this post we are going to showcase how to secure the entire lifecycle of your Cloud Run services. Sysdig provides a secure DevOps workflow for Cloud Run Platforms that embeds security, maximizes availability and validates compliance across the serverless lifecycle. Sysdig Secure Devops Platform is open by design, with the scale, performance and usability enterprises demand.

Read Post