%term

DevSecOps and Data Engineering

Dec 17, 2021 By Snyk In Snyk

As security is adopted more in the shift left devsecops approach it brings with it a re-examining of the full SDLC. This is increasingly important not only as part of security policies and app handling but also ensuring the protection of infrastructure, data and end user app experiences. In this Snyk Live episode we are joined by Saman Fatima, sharing experiences around security practices and approach. Looking at DevSecOps practices like IAM and how security can apply to data engineering.

View Video

Snyk

Read more about DevSecOps and Data Engineering

Hangin' with Haig: Conversations Beyond the Keyboard with Guest cyber threat hunter, Jessica O'Bryan

Dec 17, 2021 By ThreatQuotient In ThreatQuotient

ThreatQuotient's Director of Alliances, Haig Colter, assumes the role of host in our series Hangin’ with Haig: Conversations Beyond the Keyboard. In our upcoming episode, we welcome Jessica O’Bryan, Cyber Threat Intelligence & Threat Hunt Development Lead for the Cyber Security Operations Center (CSOC) at Viasat. Haig will dive into Jessica’s journey in the cybersecurity industry and her love for rock climbing and surfing. In order to follow her passion for the outdoors and sports, Jessica has traveled throughout the west coast in a camper. Join us and listen in on Jessica's incredible adventures.

View Video

ThreatQuotient

Read more about Hangin' with Haig: Conversations Beyond the Keyboard with Guest cyber threat hunter, Jessica O'Bryan

SecurityScorecard Finds Log4j Active Exploitation from Nation State Actors

Dec 17, 2021 By SecurityScorecard In SecurityScorecard

There's little question that you've already heard about the recently discovered security flaw related to Log4j, a widely used Java library for logging error messages in applications. The vulnerability enables a threat actor to remotely execute commands via remote code execution (RCE) on nearly any machine using Log4j. But it's also important to cut through all of the noise to truly understand the implications of the Log4j and what organizations can do to combat it.

Read Post

SecurityScorecard

Read more about SecurityScorecard Finds Log4j Active Exploitation from Nation State Actors

5 reasons to stop using your web browser password manager

Dec 17, 2021 By Marius Masalar In 1Password

Web browsers are indispensable tools for navigating the internet, but you should think twice before entrusting your secrets to them.

Read Post

1Password

Read more about 5 reasons to stop using your web browser password manager

How do we solve a problem like Log4shell?

Dec 17, 2021 By Snyk In Snyk

With the infamous Log4shell vulnerability spread far and without any direct fixes available yet, what do we do? Our panel of Java champions discuss the immediate reality, the near term solutions, and how the community can help itself and its members Speakers Host - Randall Degges | Head of Developer Relations & Community at Snyk Ana-Maria Mihalceanu | Developer Advocate Red Hat Martijn Verburg | Principal Engineering Group Manager (Java) at Microsoft

View Video

Snyk

Read more about How do we solve a problem like Log4shell?

Log4Shell Deep Dive

Dec 17, 2021 By Snyk In Snyk

Snyk helps software-driven businesses develop fast and stay secure. Continuously find and fix vulnerabilities for npm, Maven, NuGet, RubyGems, PyPI and more.

View Video

Snyk

Read more about Log4Shell Deep Dive

Snyk + Dynatrace workshop: Integrating for real-time vulnerability detection

Dec 17, 2021 By Carwin Young In Snyk

Since 2019, Snyk and Dynatrace have partnered with a shared mission of securing the entire software development lifecycle (SDLC) and accelerating digital transformation. As many agile organizations migrate their workloads to the cloud, it’s tempting for teams to let security take a back-seat until all the pieces of the infrastructure puzzle are in place.

Read Post

Snyk

Read more about Snyk + Dynatrace workshop: Integrating for real-time vulnerability detection

Happy holidays from 1Password

Dec 17, 2021 By 1Password In 1Password

Forget hunting down the WiFi password, ‘tis the season to invite your loved ones to 1Password Families.

View Video

1Password

Read more about Happy holidays from 1Password

Arctic Wolf Cloud Detection and Response

Dec 17, 2021 By Arctic Wolf In Arctic Wolf

Cloud Detection and Response protects you from key cloud threats like account and business email compromise, ransomware, suspicious resource usage, and phished credentials. Arctic Wolf's Concierge Security® Team continually reviews your cloud posture and works to harden your environment over time. The cloud has changed the way we work. Accelerate your cloud transformation and have confidence your business is secure with Arctic Wolf Cloud Detection and Response.

View Video

Arctic Wolf

Read more about Arctic Wolf Cloud Detection and Response

Arctic Wolf Releases Open Source Log4Shell Detection Script

Dec 17, 2021 By Arctic Wolf In Arctic Wolf

After successful deployment to Arctic Wolf’s customer community of more than 2,300 organizations worldwide, today we are making “Log4Shell Deep Scan” publicly available on GitHub. Log4Shell Deep Scan enables detection of both CVE-2021-45046 and CVE-2021-44228 within nested JAR files, as well as WAR and EAR files.

Read Post

Arctic Wolf

Read more about Arctic Wolf Releases Open Source Log4Shell Detection Script

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

DevSecOps and Data Engineering

Hangin' with Haig: Conversations Beyond the Keyboard with Guest cyber threat hunter, Jessica O'Bryan

SecurityScorecard Finds Log4j Active Exploitation from Nation State Actors

5 reasons to stop using your web browser password manager

How do we solve a problem like Log4shell?

Log4Shell Deep Dive

Snyk + Dynatrace workshop: Integrating for real-time vulnerability detection

Happy holidays from 1Password

Arctic Wolf Cloud Detection and Response

Arctic Wolf Releases Open Source Log4Shell Detection Script

Monthly Archive

Follow Us