Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

CalCom

How SQL Server Audit is Your Secret Security Weapon

Feb 19, 2024 By John Gates In CalCom
The SQL Server Audit object gathers individual occurrences of server or database-level actions and sets of actions for monitoring purposes. This audit operates at the SQL Server instance level, allowing for multiple audits per instance. Upon defining an audit, you designate the destination for result output. Before beginning a SQL Server audit pay attention to the limitations and restrictions associated with database audit specifications.
Read Post

Snyk & ServiceNow

Feb 15, 2024 By Snyk In Snyk
Did you know that up to 90 percent of modern software uses open source software? Often SecOps, AppSec and IT teams don’t have a complete view of their application security risk across the organization. The Snyk and ServiceNow integration efficiently finds, prioritizes, and tracks vulnerabilities in open source dependencies to get a complete view of your application security posture and drive smarter, faster fixes in ServiceNow workflows.
View Video
armo

Beyond the noise: runtime-based vulnerability management for effective threat control

Feb 15, 2024 By Yossi Ben Naim In ARMO
In an ideal world, patching every vulnerability before attackers discover them would be a breeze. The reality of the evolving cloud-native landscape, with its ever-changing mix of cloud, DevOps, mobile, and critical infrastructure, paints a different picture. New risks emerge constantly, leaving traditional vulnerability management approaches struggling to keep up. Meanwhile, Security and DevOps teams face ongoing pressure to protect their organizations from vulnerabilities.
Read Post
mend

Secrets Management vs Secrets Detection: Here's What You Need to Know

Feb 15, 2024 By Jeff Martin In Mend
As the name might imply, it’s important to keep secrets secret. Access to even the smallest of secrets can open a window for attackers who can then escalate their access to other parts of the system, allowing them to find more important secrets along the way. Poor practices can leave many secrets lying around unprotected and just one seemingly unimportant secret can lead to a broad security breach.
Read Post

Modernizing Access to Mitigate Security Risk and Speed Threat Response

Feb 15, 2024 By Teleport In Teleport
Organizations face increasing risk of data breach, with threat actors taking aim at credentials and standing privileges. So what can companies do to protect their infrastructure? Join Melinda Marks, Practice Director of Enterprise Strategy Group (ESG), Ev Kontsevoy (CEO), and Sasha Klizhentas (CTO) of Teleport to explore.
View Video

What are secrets? Why hardcoded secrets are a security risk. Explained in 60 seconds

Feb 13, 2024 By GitGuardian In GitGuardian
Secrets like API keys, Certificates, and credential pairs are used throughout modern software development. However, these pose a significant risk as attackers are always after them to gain unauthorized access to our system. This video explains in 60 seconds why hardcoding secrets or insecurely storing them is a security issue. The video also addresses some tools to use to manage your secrets or to scan your sourcecode for secrets,
View Video
teleport

Teleport Starts Issuing CVEs

Feb 13, 2024 By Mike Jensen and Walt Della In Teleport
Teleport is an open source company. We develop in the open, including full disclosure of security issues in our changelogs and pull requests. We share our penetration tests and key compliance reports. Despite this, our communication to open source users and integration with automated security tooling needed improvement. We needed a standardized way to refer to our vulnerabilities so that when two people (or systems) talk about a vulnerability, they know they’re talking about the same thing.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.