Security

The latest News and Information on CyberSecurity for Applications, Services and Infrastructure, and related technologies.

Calico VPP: Empowering High-Performance Kubernetes Networking with Userspace Packet Processing

Apr 3, 2024 By Nathan Skrzypczak In Tigera

This is a guest post authored by Nathan Skrzypczak, R&D Engineer at Cisco. Calico VPP, the latest addition to Calico’s suite of pluggable data planes, revolutionizes Kubernetes networking by enabling transparent user-space packet processing. With features such as service load balancing, encapsulation, policy enforcement, and encryption, Calico VPP brings the performance, flexibility, and observability of VPP to Kubernetes networking.

Read Post

Tigera

Read more about Calico VPP: Empowering High-Performance Kubernetes Networking with Userspace Packet Processing

Introduction to Endpoint Management: Definition, Benefits, and Tools

Apr 2, 2024 By Kimberly Yánez In InvGate

Endpoint Management is so inherent to IT that it is canon in this industry, especially now that remote work is the new normal. Setting a robust system is paramount for any organization that relies on digital devices. These devices are connected to the corporate network and can access its resources, so the goal is to ensure that these devices are secure, compliant with company policies, and operating efficiently.

Read Post

InvGate

Read more about Introduction to Endpoint Management: Definition, Benefits, and Tools

Debunking Misconceptions About MDR

Apr 2, 2024 By Pete Roythorne In N-able

With the cybersecurity landscape evolving rapidly, Managed Detection and Response (MDR) has emerged as a major component for MSPs looking to safeguard organizations against increasingly sophisticated threats. However, despite its growing importance, there are still a number of misconceptions around the technology that can hinder its adoption. In this blog, we challenge some of these myths and highlight the significance of MDR in today’s IT environments, particularly for MSPs.

Read Post

N-able

Read more about Debunking Misconceptions About MDR

XZ Vulnerability

Apr 2, 2024 By Pandora FMS team In Pandora FMS

You drink tap water every day, right? Do you know who invented the filtering mechanism that makes water pure and clean?… Well, do you actually care? Do you know that this mechanism is exactly the same in all the taps of all the houses of any country? Do you know that this specialized piece is the work of an engineer who does it just because? Can you imagine what could happen if this person had a bad day?

Read Post

Pandora FMS

Read more about XZ Vulnerability

Inventory and remediate Red Hat Enterprise Linux with Security Technical Implementation Guides (STIGs)

Apr 1, 2024 By Craig Comstock In CFEngine

Security Technical Implementation Guides (STIGs) are an excellent body of knowledge to leverage in securing your infrastructure. With the stig-rhel-7 module you can easily add inventory and remediation policy for RHEL 7 with CFEngine. Do note that as of March 2024 this module does not provide comprehensive coverage but rather an initial 10 findings are implemented.

Read Post

CFEngine

Read more about Inventory and remediate Red Hat Enterprise Linux with Security Technical Implementation Guides (STIGs)

What is DevSecOps?

Apr 1, 2024 By CircleCI In CircleCI

DevSecOps, short for development, security, and operations, is a methodology that integrates modern security practices into the software development and delivery process.

View Video

CircleCI

Read more about What is DevSecOps?

xz Backdoor: What to Know + What to Do About the XZ Utils Vulnerability

Apr 1, 2024 By Robin Tatam In Puppet

The xz backdoor is a vulnerability in XZ Utils, a popular data compression library. The xz backdoor can let unauthorized users gain admin-level access to systems, endangering data security and much more. Read on to learn more about the xz backdoor, who’s affected, and what you can do now to find out if your systems are at risk.

Read Post

Puppet

Read more about xz Backdoor: What to Know + What to Do About the XZ Utils Vulnerability

Feature Friday #3: execresult_as_data()

Mar 29, 2024 By Nick Anderson In CFEngine

When you want to inspect both the return code and output from a command execresult_as_data() might be the function you are searching for. Most CFEngine policy writers have used execresult() and returnszero(). They are useful when you want to do something based on the output of a command or based on its successful execution (returning zero). For example: /tmp/feature-friday-3.cf command output But, sometimes, you care about specific return codes.

Read Post

CFEngine

Read more about Feature Friday #3: execresult_as_data()

How to Manage Sensitive Log Data

Mar 29, 2024 By Joe Howell In ObservIQ

According to Statistia, the total number of data breaches reached an all-time high of 3,205 in 2023, affecting more than 350 million individuals worldwide. These breaches primarily occurred in the Healthcare, Financial Services, Manufacturing, Professional Services, and Technology sectors. The mishandling of sensitive log data provides an on-ramp to many of the most common attack vectors.

Read Post

ObservIQ

Read more about How to Manage Sensitive Log Data

5 Proactive Security Engineering Techniques for Cloud-Native Teams

Mar 28, 2024 By David Bunting In ChaosSearch

Developing a proactive security strategy can potentially save an organization millions of dollars per year. According to IBM, the average cost of a data breach in 2023 added up to a staggering $4.45 million, up 15% over the last three years. This is especially true for cloud-native environments, which face unique security challenges due to their dynamic nature. Instead of waiting to respond to cybersecurity incidents after they happen, it's much better to embrace a proactive approach, and prevent them in the first place.

Read Post