%term

The latest News and Information on CyberSecurity for Applications, Services and Infrastructure, and related technologies.

What is Red Teaming in Cyber Security? The Complete Guide

Mar 31, 2022 By Coralogix In Coralogix

Red teaming is the practice of asking a trusted group of individuals to launch an attack on your software or your organization so that you can test how your defenses will hold up in a real-world situation. Any organization reliant on software – including banks, healthcare providers, government institutions, or logistics companies – is potentially vulnerable to cyberattacks, such as ransomware or data exfiltration.

Read Post

Coralogix

Read more about What is Red Teaming in Cyber Security? The Complete Guide

Elastic on Elastic - Using Elastic Observability to optimize the performance of detection rules in Elastic Security

Mar 30, 2022 By Dmitrii Shevchenko In Elastic

Elastic Security’s developer support team has recently seen a surge in reports from customers about sluggish performance in our UI. Our initial inspection of logs for troubleshooting provided some insights, but not enough for a true fix. Luckily, we have Elastic Observability and its APM capabilities to dive in deeper and look under the hood at what was really happening within Elastic Security. And, more importantly, how we could improve its performance for customers.

Read Post

Elastic

Read more about Elastic on Elastic - Using Elastic Observability to optimize the performance of detection rules in Elastic Security

What is Data Encryption and Why It's Recommended for Really Safe Online Security

Mar 30, 2022 By Internxt Team In Internxt

Encryption has come a long, long way over the last few years. Something once reserved only for militaries and governments, encryption has been made super accessible and has become standard practice in the tech industry. Whether it’s texts, photos, or word docs - it can, and should, be encrypted. Put simply, encryption scrambles any file sent or stored online into unreadable nonsense that can only be translated (or decrypted) by a user with a key.

Read Post

Internxt

Read more about What is Data Encryption and Why It's Recommended for Really Safe Online Security

Chrome Zero Day: Find vulnerable devices for patching

Mar 30, 2022 By InvGate In InvGate

Google issued an emergency security update due to the severity of exploit CVE-2022-1096. A few days later, Microsoft joined the recommendation, advising Chromium Edge users to update their browsers as well. Therefore, if you haven’t already, you should check your browser details to check if it’s updated to version 99.0.4844.84 of Chrome or version 99.0.1150.55 or higher of Edge. Matt Beran shows you how you can find vulnerable devices across your inventory for proactive patching using InvGate Insight.

View Video

InvGate

Read more about Chrome Zero Day: Find vulnerable devices for patching

Chrome zero-day: find devices with vulnerabilities across your inventory

Mar 30, 2022 By InvGate In InvGate

If you’re an asset manager or an application administrator, you must have had - or are about to have - a lot of work since there’s a new Chrome zero-day vulnerability in the wild. Google issued an emergency security update due to the severity of exploit CVE-2022-1096. A few days later, Microsoft joined the recommendation, advising Chromium Edge users to update their browsers as well.

Read Post

InvGate

Read more about Chrome zero-day: find devices with vulnerabilities across your inventory

Change in behavior: Directory permissions and the execute bit

Mar 29, 2022 By Nick Anderson In CFEngine

rxdirs has provided a convenient default when setting permissions recursively. When enabled (the default prior to version 3.20.0) a promise to grant read access on a directory is extended to also include execution since quite commonly if you want to read a directory you also want to be able to list the files in the directory. However, the convenience comes with the cost of complicating security reviews since the state requested on the surface is more strict than what is actually granted.

Read Post

CFEngine

Read more about Change in behavior: Directory permissions and the execute bit

Getting started with CFEngine Pt. 1.5 - Local installation with vagrant

Mar 29, 2022 By CFEngine In CFEngine

This video tutorial shows you how you can use vagrant and virtualbox to create a virtual machine locally, for use with CFEngine. If you are using DigitalOcean or another cloud provider, as shown in Part 1, this part can be skipped.

View Video

CFEngine

Read more about Getting started with CFEngine Pt. 1.5 - Local installation with vagrant

Cybersecurity Risk Management: Introduction to Security Analytics

Mar 29, 2022 By Graylog Security Team In Graylog

It’s mid-morning. You’re scanning the daily news while enjoying a coffee break. You come across yet another headline broadcasting a supply chain data breach. Your heart skips a quick, almost undetectable, beat. You have the technology in the headline in your stack. You set aside your coffee and begin furiously scanning through the overwhelming number of alerts triggered across all your technologies.

Read Post

Graylog

Read more about Cybersecurity Risk Management: Introduction to Security Analytics

Splunk Indexer Vulnerability: What You Need to Know

Mar 29, 2022 By Chris Cooney In Coralogix

A new vulnerability, CVE-2021-342 has been discovered in the Splunk indexer component, which is a commonly utilized part of the Splunk Enterprise suite. We’re going to explain the affected components, the severity of the vulnerability, mitigations you can put in place, and long-term considerations you may wish to make when using Splunk.

Read Post

Coralogix

Read more about Splunk Indexer Vulnerability: What You Need to Know

Open source security coverage and compliance with Ubuntu Pro on public clouds

Mar 29, 2022 By Lech Sandecki In Canonical

For businesses utilising public clouds, choosing an open source platform offers considerable advantages. Open source solutions can help reduce costs, provide access to the most leading-edge enterprise-grade features, and eliminate risks such as vendor lock-in, lack of support, or long-term security maintenance.

Read Post