Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

The Big Fix 2022 - Getting Started Guide

Jan 18, 2022 By Snyk In Snyk
The Big Fix brings together developers, DevOps, and security practitioners of all skill levels to help make the internet more secure. Our goal is to make security 100x better in 2022 by finding and fixing 202,200 security vulnerabilities! Join us to help find (and fix!) security vulnerabilities while making friends and winning swag. In this short video we'll help you get started finding (and fixing!) security vulnerabilities in your applications -- it's easy!
View Video

Live Hacking: Find Vulnerabilities in Your Apps Before Hackers Do

Jan 18, 2022 By Snyk In Snyk
As cloud-native technologies disrupt the Application Security (AppSec) market, forward-thinking enterprises are shifting their security to the left. A range of cutting-edge security platforms is now available, empowering developers to build secure applications within the development process. But what do secure applications look like, and why does it matter? Why are enterprises implementing security during the deployment phase?
View Video
armo

Running Kubernetes on AWS Fargate

Jan 17, 2022 By Ben Hirschberg In ARMO

For the last decade, AWS has dominated the cloud computing space with a plethora of cloud services. One of AWS’ great innovations was AWS Fargate, their first containers as a service (CaaS) offering. Prior to the introduction of Fargate, those building in the cloud were forced to choose between IaaS paradigm-focused containers or FaaS-focused serverless functions.

Read Post
teleport

SSH Hardening Tips to Prevent Brute-Force Attacks

Jan 14, 2022 By Robert Watson In Teleport

SSH servers are a common target for brute-force attacks. This is even more true if your infrastructure sits behind an SSH bastion because attackers have no choice but to compromise the bastion host either by exploitation or denial of service. In this article, we will list a few controls which will help you harden your SSH servers from brute- force attacks.

Read Post
teleport

SSH Bastion Host Best Practices

Jan 13, 2022 By Sakshyam Shah In Teleport

SSH bastion hosts are an indispensable security enforcement stack for secure infrastructure access. Every security compliance standard that deals with remote infrastructure access (e.g., FedRAMP AC-17 - Remote Access, HIPAA §164.312(a)(1) - Access control, SOC2 CC6.1 - Manage Points of Access) mandates preventing direct network access to the servers and APIs.

Read Post

What You Should Know About npm Packages 'colors' and 'faker'

Jan 12, 2022 By Snyk In Snyk
On January 8, 2022, the open source maintainer of the wildly popular npm package colors, published colors@1.4.1 and colors@1.4.44-liberty-2 in which they intentionally introduced an offending commit that adds an infinite loop to the source code. The infinite loop is triggered and executed immediately upon initialization of the package’s source code, and would result in a Denial of Service (DoS) to any Node.js server using it.
View Video

Copyright © 2026 OpsMatters™. All rights reserved.