%term

Introducing Snyk Learn

Oct 6, 2021 By Snyk In Snyk

Introducing Snyk Learn, a high-quality security education solution available for free that puts developers in control of their own security education journey. With content that is natively integrated into the development workflow, and tailored for developers, Snyk Learn makes security education relevant, actionable and engaging.

View Video

Snyk

Read more about Introducing Snyk Learn

When should a startup call the FBI

Oct 6, 2021 By Teleport In Teleport

For this 11th episode of Access Control Podcast, a podcast providing practical security advice for startups, Developer Relations Engineer at Teleport Ben Arent chats with Elvis Chan. Elvis is Assistant Special Agent in charge assigned to the San Francisco FBI Field office. Chan manages a squad responsible for investigating national security cyber matters and has over 14 years of experience in the bureau.

View Video

Teleport

Read more about When should a startup call the FBI

Build vs Buy for Start-ups

Oct 6, 2021 By Travis Gary In Teleport

This is the age-old question faced by so many tech teams: do we build or buy a system we need? TL:DR, Buying can save your engineer time for building the core stack and for the fun experiments needed to determine when to shake up the core stack.

Read Post

Teleport

Read more about Build vs Buy for Start-ups

23andMe's Yamale Python code injection, and properly sanitizing eval()

Oct 5, 2021 By Andrey Polkovneychenko and Shachar Menashe In JFrog

JFrog security research team (formerly Vdoo) has recently disclosed a code injection issue in Yamale, a popular schema validator for YAML that’s used by over 200 repositories. The issue has been assigned to CVE-2021-38305.

Read Post

JFrog

Read more about 23andMe's Yamale Python code injection, and properly sanitizing eval()

Get Cybersmart with JFrog This October

Oct 5, 2021 By Michal Brenner In JFrog

We live in a world of increasingly connected devices – phones, digital assistants, smart watches, cars, thermostats, refrigerators, windmills, and more. More than 50% of the world’s population is now online and two-thirds own a mobile device, according to the World Economic Forum. Additionally, the codebase of today’s applications typically consists mainly of open source components – exposing them to greater risk of hacking than ever before.

Read Post

JFrog

Read more about Get Cybersmart with JFrog This October

An Introduction to the Snyk Team pricing plan

Oct 4, 2021 By Snyk In Snyk

Snyk helps software-driven businesses develop fast and stay secure. Continuously find and fix vulnerabilities for npm, Maven, NuGet, RubyGems, PyPI and more.

View Video

Snyk

Read more about An Introduction to the Snyk Team pricing plan

Applying Least Privilege in Kubernetes II Jonathan Canada

Oct 4, 2021 By Teleport In Teleport

Scalability and Cloud-Native have driven the demand for Kubernetes, but the developer now has the harder task of building applications in a secure manner. This talk will focus on best practices for implementing least privilege and enforcing zero trust principles within Kubernetes clusters. A how-to for implementing robust Role Based Access Control (RBAC) tied into the corporate SSO/Identity provider using Teleport.

View Video

Teleport

Read more about Applying Least Privilege in Kubernetes II Jonathan Canada

The Vulnerability Conundrum: Improving the Disclosure Process

Oct 4, 2021 By Asaf Karas In JFrog

The vulnerability disclosure process involves reporting security flaws in software or hardware, and can be complex. Cooperation between the organization responsible for the software or hardware, and the security researcher who discovers the vulnerability can be complicated. In this blog we’ll look at the vulnerability disclosure process, the parties involved and how they can collaborate productively.

Read Post

JFrog

Read more about The Vulnerability Conundrum: Improving the Disclosure Process

Join Snyk in celebrating 31 days of Cybersecurity Awareness Month 2021

Oct 1, 2021 By Randall Degges In Snyk

Today’s the first day of October as well as the first day of the 18th annual Cybersecurity Awareness Month. The purpose of Cybersecurity Awareness Month is not only to raise awareness about the importance of cybersecurity, but also to inspire people to improve their cybersecurity posture: whether that be through implementing multi-factor authentication, not clicking that suspicious email attachment, or even writing code more securely by utilizing a tool like Snyk. =)

Read Post

Snyk

Read more about Join Snyk in celebrating 31 days of Cybersecurity Awareness Month 2021

Low Latency Identity-aware Access Proxy in Multiple Regions

Oct 1, 2021 By Kevin Nisbet In Teleport

A multi-protocol access proxy is a powerful concept for securing access to infrastructure. But accessing numerous computing resources distributed across the globe via a single endpoint presents a latency challenge. Today we are announcing that the hosted edition of Teleport Access Plane is now available in 5 regions all over the world.

Read Post

Teleport

Read more about Low Latency Identity-aware Access Proxy in Multiple Regions

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Introducing Snyk Learn

When should a startup call the FBI

Build vs Buy for Start-ups

23andMe's Yamale Python code injection, and properly sanitizing eval()

Get Cybersmart with JFrog This October

An Introduction to the Snyk Team pricing plan

Applying Least Privilege in Kubernetes II Jonathan Canada

The Vulnerability Conundrum: Improving the Disclosure Process

Join Snyk in celebrating 31 days of Cybersecurity Awareness Month 2021

Low Latency Identity-aware Access Proxy in Multiple Regions

Monthly Archive

Follow Us