%term

Web Application Security for DevOps: Site and Origin Dynamics and Cross-Site Request Forgery

Oct 22, 2024 By Chris Poulin In BitSight

This is a continuation of the series on web application security. If you haven't already read through part 1, this is a good time to go back. If not, let's move on and answer the question left hanging during our last installment: how do browsers know which site set the cookies in the first place? And what constitutes the same site?

Read Post

BitSight

Read more about Web Application Security for DevOps: Site and Origin Dynamics and Cross-Site Request Forgery

The NIS2 Directive is Here. What Happens Next?

Oct 22, 2024 By Jack Pitts In Teleport

The Network and Information Security (NIS2) Directive’s deadline of October 17th has officially passed. Yet despite this deadline – and the strict penalties in place for non-compliance – nearly 66% of businesses operating in Europe have likely not implemented the necessary compliance controls (Veeam Software). Additionally, the majority of EU member states have yet to officially codify NIS2 standards into their national laws.

Read Post

Teleport

Read more about The NIS2 Directive is Here. What Happens Next?

From SIEM to Detection as Code

Oct 22, 2024 By Teleport In Teleport

Cloud-Native SIEM: Scaling Security for the Modern Era Key Takeaways: Detection-as-code offers improved governance, collaboration, and scalability Start with a clear understanding of critical threats to your organization Balance comprehensive monitoring with intentional, focused alerts Consider cloud-native SIEM solutions for cost-effectiveness and scalability Regularly review and update security playbooks and runbooks.

View Video

Teleport

Read more about From SIEM to Detection as Code

Server Compliance Simplified: Compliance for Security

Oct 21, 2024 By John Gates In CalCom

Server compliance is critical to regulatory compliance, ensuring that organizations meet industry-specific standards for protecting sensitive data. Proper server configuration and continuous risk management are essential to avoid fines and maintain operational integrity. Server compliance is the adherence to specific regulations, standards, and best practices designed to safeguard sensitive information, maintain operational efficiency, and mitigate potential risks.

Read Post

CalCom

Read more about Server Compliance Simplified: Compliance for Security

How Secure is this NEW AI Coding Tool? Bolt by Stackblitz

Oct 21, 2024 By Snyk In Snyk

Bolt.new is an AI coding tool brought to us by StackBlitz. In this video we will be testing the security of the code that this tool generates and seeing how it compares to other AI developer tools that are available.

View Video

Snyk

Read more about How Secure is this NEW AI Coding Tool? Bolt by Stackblitz

CloudCasa October Feature Updates

Oct 21, 2024 By CloudCasa In CloudCasa

It’s autumn again here in New Jersey, home of Catalogic Software and global hub of CloudCasa engineering. Temperatures are getting cooler, leaves are starting to turn, and the scent of hot cider and pumpkin spice latte is in the air. But here and in our offices around the world, CloudCasa development is continuing to heat up. This is the fourth October since CloudCasa’s 2020 debut, and we’re pleased to announce our 18th significant feature update.

Read Post

CloudCasa

Read more about CloudCasa October Feature Updates

Policy as code in Kubernetes: security with seccomp and network policies

Oct 21, 2024 By Afek Berger In ARMO

The dynamic world of Kubernetes and cloud security is constantly evolving. As we explore this complicated ecosystem, it’s crucial to understand the role of policy as code (PaC) and its impact on operations and security teams. Emerging from the broader paradigm of infrastructure as code (IaC), PaC represents a significant shift in how we manage and secure cloud-native environments.

Read Post