Account Security Updates
Have you wanted to throw away your expensive internet bill and use your neighbor's insecure wifi? Was the only thing holding you back the Honeybadger single-factor auth flow? Well, have I got news for you.
Operations | Monitoring | ITSM | DevOps | Cloud
The Place Where Modern Operations & Technology Come Together
The latest News and Information on CyberSecurity for Applications, Services and Infrastructure, and related technologies.
Top 5 Open-Source HIDS Systems
The threat landscape has become increasingly diverse and the systems used to attack are more sophisticated than ever before. In 2018, enterprises and organizations of all sizes and across all industries faced serious data breaches (information leaks were experienced by Aadhar —1.1B users; myFitnessPal —150M; Quora—100M; Facebook—29M and many more). One of the biggest victims was Marriot.
Container compliance for Docker and Kubernetes
Container compliance for Docker and Kubernetes is an essential part of enterprise security. It’s important for your environments, no matter where they reside, to remain compliant with industry regulation and/or company security policy.
Detecting and preventing cgroups escape via SCTP - CVE-2019-3874
This week CVE-2019-3874 was discovered which details a flaw in the Linux kernel where an attacker can circumvent cgroup memory isolation using the SCTP socket buffer. In containerised environments, this has the potential for a container running as root to create a DoS.
How to Look for Suspicious Activities in Windows Servers
Scenario You are running a large production environment with many Windows servers. There are multiple forests in the network and some forests have multiple domain controllers. Your Windows server security is paramount – you want to track and audit suspicious activities and view detailed Windows reports extracted from the Windows servers event logs.
Detecting the Kubernetes API Server DoS Vulnerability (CVE-2019-1002100)
Recently, a new Kubernetes related vulnerability was announced that affected the kube-apiserver. This was a denial of service vulnerability where authorized users with write permissions could overload the API server as it is handling requests. The issue is categorized as a medium severity (CVSS score of 6.5) and can be resolved by upgrading the kube-apiserver to v1.11.8, v1.12.6, or v1.13.4.
Build a More Effective Service Desk
Is your service desk struggling to manage daily workflows? When your MSP is stuck in operational mode, your technicians are spending valuable business hours fighting with competing priorities, undocumented processes, and unclear escalation practices instead of ticket resolution.
Tech leadership, security challenges, and spies
An eye-opening conversation with Atlassian’s CISO, Adrian Ludwig.
SolarWinds Lab Episode #74: Security Tools to Fit Today's Threats
In this episode, Head Geeks™ Destiny Bertucci and Thomas LaRock will show you how to ward off security dangers using SolarWinds software. See how SQL injection can be rooted out and how access rights compliance is a headache of the past. All while using Log & Event Manager with a little help from Access Rights Manager.
5 Reasons Why a Secure Server is Necessary for your Website
By 2020, the cost of a data breach would amount to a whopping $150 million! No industry is safe from such violations. Did you know that after every 39 seconds, there is a hacker attack on computers and websites? Think about how many cyber-attacks might happen as you are reading this. Your business and website can be one of them unless you take the necessary measures to secure your platform.