%term

The latest News and Information on CyberSecurity for Applications, Services and Infrastructure, and related technologies.

Bulletproof strategies against 6 security incident types

Apr 26, 2025 By Leo Baecker In Hyperping

Every 11 seconds, a business falls victim to a cyberattack. The financial impact is staggering: $10.5 trillion in annual damages predicted in 2025. But beyond the immediate costs, security incidents can permanently damage your reputation, destroy customer trust, and even force your company to close its doors. What's particularly alarming is how unprepared most organizations are.

Read Post

Hyperping

Read more about Bulletproof strategies against 6 security incident types

Part 2: Solving the Top 10 Problems with Vulnerability Management

Apr 25, 2025 By Ivanti In Ivanti

Once again, we're back with all the answers. Traditional vulnerability management comes with many pitfalls, and we're counting down the solutions to all the problems you might be running into. Ivanti's Chris Goettl and Robert Waters break down the back five on our list: a periodic approach to remediation, poor prioritization, lack of business context, overreliance on patch management, and poor metrics and reporting.

View Video

Ivanti

Read more about Part 2: Solving the Top 10 Problems with Vulnerability Management

Is Your Attack Surface Growing Faster Than Your Security?

Apr 25, 2025 By OpsMatters In OpsMatters

In today's digital-first business environment, the race to adopt new technologies often outpaces the strategies to secure them. From cloud services to remote work tools, organizations are rapidly expanding their digital presence. However, with every new tool, platform, or endpoint comes a new potential vulnerability. This expanding "attack surface" can leave businesses exposed, especially if they don't actively monitor and manage it.

Read Post

OpsMatters

Read more about Is Your Attack Surface Growing Faster Than Your Security?

How HTTPS (HTTP) Proxies Differ from SOCKS5: Understanding Protocol Differences

Apr 25, 2025 By OpsMatters In OpsMatters

A proxy server functions as a go-between for the client and the destination server. It's commonly used to bypass content restrictions, boost online security, and improve anonymity. There are several types of proxy protocols available, with HTTP and SOCKS being among the most widely used. But how exactly do they differ-and how should you decide which one to use?

Read Post

OpsMatters

Read more about How HTTPS (HTTP) Proxies Differ from SOCKS5: Understanding Protocol Differences

N-able Report Reveals the Future of the SOC Relies on AI, While Human Intervention Remains Essential

Apr 24, 2025 By N-able In N-able

As cybersecurity challenges intensify, AI will fuel Security Operations Center (SOC) advancements and empower human analysts to improve defense and overcome alert fatigue.

Read Post

N-able

Read more about N-able Report Reveals the Future of the SOC Relies on AI, While Human Intervention Remains Essential

OWASP CI/CD Top 10: Inadequate IAM

Apr 24, 2025 By Nigel Douglas In Cloudsmith

In the race to ship software faster, many teams have turned to automation, decentralised tools, and powerful pipelines. But lurking under the surface of these streamlined processes is a growing and often invisible Identity and Access Management (IAM) threat vector. — a core vulnerability in modern CI/CD security.

Read Post

Cloudsmith

Read more about OWASP CI/CD Top 10: Inadequate IAM

CFEngine: The agent is in 48 - Using CFEngine for Android application inventory & management

Apr 24, 2025 By CFEngine In CFEngine

"CFEngine: The agent is in" is our monthly webinar series, where we show new features, teach best practices, and keep the community informed about everything CFEngine.

View Video

CFEngine

Read more about CFEngine: The agent is in 48 - Using CFEngine for Android application inventory & management

How to Build a Successful SIEM Migration Strategy

Apr 24, 2025 By Ed Bailey In Cribl

At least once a week, a team reaches out to discuss migrating from an established SIEM or analysis platform. This major decision is influenced by several compelling factors, which can create significant work for engineering teams and pose risks to the business. The cost of switching to a new platform, often referred to as displacement costs, can be substantial.

Read Post

Cribl

Read more about How to Build a Successful SIEM Migration Strategy

Preventing harmful LLM output with automated moderation

Apr 23, 2025 By Najia Gul In CircleCI

Large Language Models (LLMs) can produce impressive text responses, but they’re not immune to generating harmful or disallowed content. If you’re developing an LLM-powered application, you need a reliable way to detect and block risky outputs. Disallowed content – hate speech, explicit descriptions, harmful instructions – can damage your product’s reputation, endanger user safety, and potentially violate legal or platform guidelines.

Read Post

CircleCI

Read more about Preventing harmful LLM output with automated moderation

Vulnerability Remediation: Automate VR Workflows with Puppet

Apr 23, 2025 By Perforce Puppet In Puppet

Secure and resilient infrastructure is non-negotiable. Puppet Enterprise Advanced automates critical tasks like patching, configuration management, and compliance, strengthening your security posture and bridging the gap between security and operations. Deploy essential updates quickly, minimizing threats and maximizing efficiency.

View Video