Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Are you using security tools such as Semgrep, Prowler, KICS, Semgrep, OWASP ZAP, NPM-Audit, Ttivy or others as part of your DevSecOps Toolchain? How do you monitor or get reports from each one of those security tools? Do you implement and configure them manually across all your resources? Jit is an open DevSecOps Orchestration Platform; get your first scan in 5 minutes; you’ll enjoy a fix-focused, native developer experience and comprehensive AppSec visibility.

In today's age of information, it's becoming increasingly easier to gather information on anyone, including their professional lives on platforms like LinkedIn. While it may seem harmless to check out a colleague's profile or connect with a friend, it's important to consider the potential security risks involved. In this video, we explore the growing concern of side-channel attacks, where hackers can gain access to personal information through the connections and networks of individuals. We discuss how to identify potential risks and take steps to safeguard your personal and professional information.

In this coding session, fuzzing expert Josh Grant will demo how the integration of Jazzer.js into Jest enables a unified workflow for functional and security testing in JavaScript. All with the familiar look and feel of a unit test.

learn how to create AWS Honey Tokens that alert you when someone attempts to use them. Honey tokens are API or access keys that are real but harmless and can be used as an early warning system to know when an intruder has made it into your system. In this video, we run through the simple steps to be able. to create your very own AWS Honey Tokens using an open-source project and all your own infrastructure.

As a provider of digital, online curriculums for personalized learning experience both across the US and around the globe, the pandemic caused Edmentum to scale, fast. That growth in business required a new dedication to security as the organization needs to keep their clients’ data safe while maintaining regional, state, and federal compliance.

In this video, I'll be taking you on a chilling journey through the inner workings of the dark net's cybercrime underworld. I'll show you how easy it is to buy a compromised server, purchase ransomware-as-a-service components, and install an Xbox kit to deploy the attack with friends. But the real eye-opener is the endgame: turning the stolen Bitcoin into cash. I'll reveal how Tumblr services on the dark net are used to launder money, and how traditional criminals use Doctrine to convert it into physical cash. Join me as I guide you step-by-step through this one-stop-shop for cybercrime, and expose the alarming ease with which it can all be accomplished. - Oliver Rochford

Brex showcase how they leverage Tines' no-code automation platform to scale their security alert systems at The Future of Security Operations Roadshow: San Francisco 2023.

Material Security gives a presentation on how its security team is automating case management using GitHub and Tines at The Future of Security Operations Roadshow in San Francisco 2023.

In this video, we'll address the elephant in the room: the growing concern of AI being used for malicious purposes. With the rise of malware and ransomware attacks, it's becoming far too easy for outsiders to become insiders in this dangerous world. I'll be discussing ChatGPT and its role in this trend, as well as exploring the reasons why individuals turn to AI automation as a means of generating income. Join me for an eye-opening conversation about the dark side of AI and the urgent need for responsible use and regulation. - Richard Cassidy

ThreatQuotient's Director of Alliances, Haig Colter, assumes the role of host in our series Hangin’ with Haig: Conversations Beyond the Keyboard. In our upcoming episode, we welcome Valéry Marchive. Co-founder of LeMagIT, Valéry has been its editor-in-chief since January 2020. A computer scientist by training, he specialised in cybersecurity and has developed an investigative approach to his journalistic practice, both in studying known cyberattacks and in understanding the dynamics of cybercrime. For several years, he has meticulously investigated cyber attacks with ransomware and their perpetrators.