%term

The latest News and Information on CyberSecurity for Applications, Services and Infrastructure, and related technologies.

Domain controller patch alert! Vulnerability grants domain admin access in 10 seconds

Oct 15, 2020 By Log360 In ManageEngine

A critical Active Directory vulnerability (CVE-2020-1472) has been making headlines for being the most notorious elevation of privilege bug because it can affect all computers and domain controllers in an organization. This high-risk vulnerability, dubbed Zerologon, gives threat actors easy, instant access to domain controllers without requiring any additional privileges. This attack does not even require a user to be authenticated; the user just needs to be connected to the internal network.

Read Post

ManageEngine

Read more about Domain controller patch alert! Vulnerability grants domain admin access in 10 seconds

Lift the Haze of the Cloud With These 6 Considerations

Oct 15, 2020 By Tim Lawes In SolarWinds

Gartner says when COVID-19 hit the United States in March, 88% of businesses mandated or strongly encouraged employees to work from home. Sales, marketing, human resources, and most other business operations were all conducted from somewhere outside of the office. This drastic move required IT to accommodate employees in an entirely new way than what they had become accustomed to.

Read Post

SolarWinds

Read more about Lift the Haze of the Cloud With These 6 Considerations

A Few Minutes More: Add Xray DevSecOps to Artifactory Enterprise on Azure

Oct 15, 2020 By Daniel Miakotkin In JFrog

In a prior blog post, we explained how to install or update Artifactory through the Azure Marketplace in the amount of time it takes for your coffee order to arrive on the counter. Now you can add to your self-managed (BYOL) Artifactory deployment Xray, the cream of software component analysis (SCA) tools, through the Azure Marketplace as well.

Read Post

JFrog

Read more about A Few Minutes More: Add Xray DevSecOps to Artifactory Enterprise on Azure

Event Log Management for Security and Compliance

Oct 15, 2020 By Graylog In Graylog

Security log management is the process of collecting, storing, and correlating the network data that details all activity in your systems and networks. Every action in an organization’s network generates event data, including records produced by operating systems, applications, devices, and users. The Center for Internet Security (CIS) identifies log management as a basic control for detecting malicious actors and software hiding in networks and on machines.

Read Post

Graylog

Read more about Event Log Management for Security and Compliance

5 Things to Know When Choosing Open Source SIEM Tools

Oct 14, 2020 By Gedalyah Reback In logz.io

Security Information and Event Management (SIEM) tools focus on insights into IT environments and tracking records of all their operations. These IT environments can be application infrastructures, physical networks, and cloud networks. SIEM initially evolved from the log management discipline, which involved integrating security events with security information to collect, analyze, and report on activities in networks.

Read Post

logz.io

Read more about 5 Things to Know When Choosing Open Source SIEM Tools

Sumo Logic Cloud SIEM overview

Oct 14, 2020 By Sumo Logic In Sumo Logic

Sumo Logic's Cloud SIEM solution provides security analysts with enhanced visibility to seamlessly monitor their on-prem, hybrid, and multi-cloud infrastructures and thoroughly understand the impact and context of an attack. In addition to supporting a wide spectrum of security use cases, including audit & compliance, Sumo Logic fused analytics and SOC automation to perform security analyst workflows and automatically triage alerts—increasing human efficiencies and enabling analysts to focus on higher-value security functions.

View Video

Sumo Logic

Read more about Sumo Logic Cloud SIEM overview

Building a Zero-Trust Model With SolarWinds Security Tools - SolarWinds Lab Episode #92

Oct 14, 2020 By SolarWinds In SolarWinds

The zero-trust model is critical for building a successful strategy to detect both internal and external cybersecurity threats. This approach requires setting and maintaining strict access controls and "no trust" as the default to all, including those already inside your network. There are several steps needed to properly evaluate your organization's current state before you can start implementing best practices.

View Video

SolarWinds

Read more about Building a Zero-Trust Model With SolarWinds Security Tools - SolarWinds Lab Episode #92

Getting up and running with Calico on AKS

Oct 14, 2020 By Tigera In Tigera

Spinning up an AKS cluster is a great way to get started with Kubernetes on Azure. But if you are doing more than just playing, you’ll want to understand the multiple networking options AKS provides for you to choose from, each with different scale and security implications.

View Video

Tigera

Read more about Getting up and running with Calico on AKS

Solving Microservices Connectivity Issues with Network Logs

Oct 14, 2020 By Bikram Gupta In Tigera

The network is foundational to distributed application environments. A distributed application has multiple microservices, each running in a set of pods often located on different nodes. Problem areas in a distributed application can be in network layer connectivity (think network flow logs), or application resources unavailability (think metrics), or component unavailability (think tracing).

Read Post

Tigera

Read more about Solving Microservices Connectivity Issues with Network Logs

Threats That Data Analysis Can Protect You From

Oct 14, 2020 By Eleanor Bennett In Logit.io

In our latest post we’re covering a range of the different kinds of problems and threats data analysis can help protect your business from. We’ve brought together some of our favourite experts working in big data, cybersecurity and tech to shed light on some of the practical applications of using data analysis for protecting your operations.

Read Post