Security

The latest News and Information on CyberSecurity for Applications, Services and Infrastructure, and related technologies.

Automatic correlation of FireEye red team tool countermeasure detections

Dec 11, 2020 By Sumo Logic In Sumo Logic

Sumo Logic has reviewed the announced breach on December 8, 2020 by FireEye and their subsequent public release of over 300 countermeasure rules. We are continuing to analyze the available information and would like to share this update to all existing and prospective customers interested in how our Sumo Logic services can assist with this development.

Read Post

Sumo Logic

Read more about Automatic correlation of FireEye red team tool countermeasure detections

12 Hybrid Cloud Security Threats That You Can Fix

Dec 10, 2020 By Katherine Rundell In OpsMatters

When it comes to having a safe and secure multiple-cloud architecture, you'll need a hybrid cloud security mindset, which focuses on securing data wherever it may be. When done correctly, a hybrid cloud (private and public) can help make your company more productive while saving money. However, a secure hybrid cloud requires a well-thought-out plan, and plenty of focus on encryption and data access control. With that said, here are 12 of the most tedious security threats in hybrid cloud security that you can actually fix.

Read Post

OpsMatters

Read more about 12 Hybrid Cloud Security Threats That You Can Fix

Preventing malicious use of Weave Scope

Dec 10, 2020 By Vicente Herrera García In Sysdig

Intezer and Microsoft reported on Sept. 9 that TeamTNT hackers are deploying Weave Scope in compromised systems as an auxiliary tool in their intrusions. Weave Scope is a legitimate and powerful tool to manage server infrastructure that, once deployed, makes it easy to control all resources. In this article, we will describe how this tool can be used maliciously, and how to add specific checks in your security set up to look for it.

Read Post

Sysdig

Read more about Preventing malicious use of Weave Scope

Getting Up and Running with Calico for Windows

Dec 10, 2020 By Tigera In Tigera

Calico is the only cross-platform CNI and networking and network security policy engine available today. It currently powers more than 150,000 known clusters across millions of nodes worldwide. Calico is also unique in supporting multiple dataplanes: Standard Linux, eBPF, and Windows HNS. Many organizations have .NET and Windows workloads that they have or eventually will modernize and deploy to Kubernetes. However, this may be uncharted territory for teams that are using Windows. This session is intended to inform and ease your adoption of Kubernetes on the Windows platform.

View Video

Tigera

Read more about Getting Up and Running with Calico for Windows

Getting started with EventSentry v4.2.x

Dec 10, 2020 By NETIKUS.NET LTD In EventSentry

This video helps new users get started with EventSentry quickly by walking them through the most important areas of the management console and web reports.

View Video

EventSentry

Read more about Getting started with EventSentry v4.2.x

See and Secure containers on AWS Fargate

Dec 10, 2020 By Sysdig In Sysdig

Tune into our #LinkedInLive event on December 9 from 11:30am-12pm PST and join Sysdig and Amazon Web Services (AWS) experts, Pawan Shankar and Eric Carter, to learn how to scan #AWS #Fargate containers in under 4 minutes with Sysdig Secure. Join this live discussion to learn how Sysdig Secure closes the visibility and security gap by providing the first automated #Fargate inline scanning.

View Video

Sysdig

Read more about See and Secure containers on AWS Fargate

New SAML Group Mapping Support

Dec 10, 2020 By Papertrail Team In SolarWinds

In July, we rolled out SolarWinds® Papertrail™ support for SAML v2.0. SAML authentication allows you to log into your Active Directory® domain or intranet and have immediate access to Papertrail, with no additional login required. Today we’re extending Papertrail SAML 2.0 support to include group mapping. Group mapping allows you to define organization and product roles, and grant access to logs and billings plans, by adding an account to an identify provider group.

Read Post

SolarWinds

Read more about New SAML Group Mapping Support

Are You Ready for the New Opportunities?

Dec 10, 2020 By Jyoti Prakash In Splunk

2020 was a crazy year with tremendous disruption, hardship, and loss. While the pandemic brings social and economic chaos, it is also changing the very nature of how we live and work. This year we have seen a new wave of digital transformation amongst various business sectors and dramatic shifts in consumer behavior.

Read Post

Splunk

Read more about Are You Ready for the New Opportunities?

Create a New Integration in Opsgenie

Dec 9, 2020 By Callum Brooks In RapidSpike

Opsgenie is a powerful alert management service that allows you to flexibly set up teams for different alerting groups. Our development team have been working hard to deliver new features and integrations, and now you are able to integrate Opsgenie with RapidSpike to help with your website monitoring.

Read Post

RapidSpike

Read more about Create a New Integration in Opsgenie

Elastic on Elastic: How InfoSec deploys infrastructure and stays up-to-date with ECK

Dec 9, 2020 By Angel Rios In Elastic

This post is part of a blog series highlighting how we embrace the solutions and features of the Elastic Stack to support our business and drive customer success. The Elastic InfoSec Security Engineering team is responsible for deploying and managing InfoSec's infrastructure and tools. At Elastic, speed, scale, and relevance is our DNA and leveraging the power of the Elastic Stack is the heart of InfoSec.

Read Post