%term

The latest News and Information on CyberSecurity for Applications, Services and Infrastructure, and related technologies.

Accelerating Sentinel data lake deployment | Webinar | VirtualMetric & Microsoft

Dec 19, 2025 By VirtualMetric | Telemetry Pipeline In VirtualMetric

Microsoft Sentinel data lake is becoming a core component of modern security architectures. In this on-demand webinar, Microsoft and VirtualMetric discuss how security teams can approach Sentinel data lake adoption to improve visibility, control cost, and prepare their data for AI-driven security workflows.

View Video

VirtualMetric

Read more about Accelerating Sentinel data lake deployment | Webinar | VirtualMetric & Microsoft

How Poor Digital Experience Drives Security Risks at Work #shorts #ivanti

Dec 19, 2025 By Ivanti In Ivanti

Ivanti’s 2025 DEX report reveals a surprising disconnect: While IT leaders strongly believe in DEX, its adoption and impact are plateauing across industries. Join us for a thought-provoking webinar with Ivanti’s Mariah Shotts, along with special guest and AI expert Rob May. We’ll unpack findings from our global survey of 3,300 IT professionals and office workers, revealing: Whether you’re just beginning your DEX journey or looking to optimize your existing program, this session will help you benchmark your progress, close critical gaps and chart a future-proof strategy.

View Video

Ivanti

Read more about How Poor Digital Experience Drives Security Risks at Work #shorts #ivanti

Addressing Critical Linux CVEs and React Vulnerabilities #patch

Dec 19, 2025 By Ivanti In Ivanti

Key Takeaways December Patch Tuesday lineup includes one known exploit in the Windows OS that warrants attention. Third-party Patch Tuesday updates include Mozilla and Adobe. Google Chrome released iOS updates so far, but a Chrome Desktop release is expected this week. Here we are at the final Patch Tuesday for 2025. Microsoft has resolved 56 CVEs (two Critical and 54 Important). Included in this release is one known exploited (CVE-2025-62221) and two publicly disclosed CVEs (CVE-2025-54100 and CVE-2025-64671).

View Video

Ivanti

Read more about Addressing Critical Linux CVEs and React Vulnerabilities #patch

Understanding Today's Biggest Cyber Threats and How Professionals Can Prepare

Dec 19, 2025 By OpsMatters In OpsMatters

Cyber threats are growing faster than many organizations can keep up with. As technology becomes more connected and embedded in daily life, the risks around digital systems rise just as quickly. Businesses, individuals, and governments depend on networks, cloud services, and remote tools, and each layer introduces new vulnerabilities. Attackers continually refine their methods, making the threat landscape constantly shift.

Read Post

OpsMatters

Read more about Understanding Today's Biggest Cyber Threats and How Professionals Can Prepare

How Istio Ambient Mode Delivers Real World Solutions

Dec 18, 2025 By John Alexander In Tigera

For years, platform teams have known what a service mesh can provide: strong workload identity, authorization, mutual TLS authentication and encryption, fine-grained traffic control, and deep observability across distributed systems. In theory, Istio checked all the boxes. In practice though, many teams hit a wall. Across industries like financial services, media, retail, and SaaS, organizations told a similar story. They wanted mTLS between services to meet regulatory or security requirements.

Read Post

Tigera

Read more about How Istio Ambient Mode Delivers Real World Solutions

Rovo Dev Auto Closing Vulnerabilities | Bitbucket Blitz | Atlassian

Dec 18, 2025 By Atlassian In Atlassian

Learn how Atlassian uses Rovo Dev to automatically find and fix code vulnerabilities with Rovo Dev and Bitbucket. This capability saves our developers thousands of hours over three months and reduces issue resolution time by half, allowing them to focus on building software and solving problems for our customers. This technology is available to all of our customers. Learn how it works, and start using it yourself.

View Video

Atlassian

Read more about Rovo Dev Auto Closing Vulnerabilities | Bitbucket Blitz | Atlassian

DLL Hijacking: Risks, Real-World Examples and How to Prevent Attacks

Dec 17, 2025 By Mariah Shotts In Ivanti

There’s been buzz around CVE-2025-56383 (published on Sept. 26, 2025), a hijacking vulnerability in Notepad++ v8.8.3 in which a DLL file can be swapped to execute malicious code. The CVE has been disputed by multiple parties, but we’re not here to comment on that. However, we are here to comment on DLL hijacking and discuss the very real threat that it poses to an organization. Let’s look into what DLL hijacking is and what measures you can take to keep your DLLs safe.

Read Post

Ivanti

Read more about DLL Hijacking: Risks, Real-World Examples and How to Prevent Attacks

Evidence as an Input

Dec 17, 2025 By Kosli In Kosli

Scan results aren’t the end — they’re the input to the next control. Evidence must be tied to fingerprints so it’s reusable.

View Video

Kosli

Read more about Evidence as an Input

Multi-domain (multi-san) certificates and better error messages

Dec 17, 2025 By Todd H. Gardner In CertKit

We shipped some big updates this week!

Read Post

CertKit

Read more about Multi-domain (multi-san) certificates and better error messages

How to Protect a Server from DDoS Attacks: 10 Practical Ways That Actually Work

Dec 17, 2025 By OpsMatters In OpsMatters

DDoS attacks are no longer exotic weapons used only against banks, governments, or global tech giants. Today, a small online store, a SaaS startup, or even a personal blog running on a VPS can become a target. The barrier to launching an attack has dropped dramatically, while the damage such attacks can cause has only grown. Any server connected to the internet is exposed by default - the only real question is how prepared it is.

Read Post