Security

The latest News and Information on CyberSecurity for Applications, Services and Infrastructure, and related technologies.

Unveil hidden malicious processes with Falco in cloud-native environments

Apr 13, 2021 By Kaizhe Huang In Sysdig

Detecting malicious processes is already complicated in cloud-native environments, as without the proper tools they are black boxes. It becomes even more complicated if those malicious processes are hidden. A malware using open source tools to evade detection has been reported. The open source project used by the malware is libprocesshider, a tool created by Sysdig’s former chief architect Gianluca.

Read Post

Sysdig

Read more about Unveil hidden malicious processes with Falco in cloud-native environments

Why You Need to Closely Monitor Your Exchange Servers

Apr 13, 2021 By Peter Hammond In Coralogix

Monitoring your on-prem and hybrid cloud infrastructure has always been important. With an ever-growing rise in cyber attacks, zero-day exploits, and insider threats, keeping track of your infrastructure has a renewed level of significance. Microsoft Exchange is one of the most prominent enterprise systems in use today, with both cloud and on-prem iterations.

Read Post

Coralogix

Read more about Why You Need to Closely Monitor Your Exchange Servers

Bits of Security, Snyk.io: Stranger Danger: Finding Security Vulnerabilities Before They Find You!

Apr 13, 2021 By Datadog In Datadog

Open source modules on the NPM ecosystem are undoubtedly awesome. However, they also represent an undeniable and massive risk, since you’re introducing someone else’s code into your system, often with little or no scrutiny. The wrong package can introduce critical vulnerabilities into your application, exposing your application and your user's data. This talk will use a sample application, Goof, which uses various vulnerable dependencies, which we will exploit as an attacker would. For each issue, we'll explain why it happened, show its impact, and—most importantly—learn how to avoid or fix it.

View Video

Datadog

Read more about Bits of Security, Snyk.io: Stranger Danger: Finding Security Vulnerabilities Before They Find You!

Bits of Security, PedidosYa: Fraud Detection using Datadog and Sherlock

Apr 13, 2021 By Datadog In Datadog

From day one, most organizations,especially the big ones, are targeted with a broad range of attacks. These range from information exfiltration attempts to fraud. Although a great majority of them can be addressed with the help of a Web Application Firewall, there are some that require more extensive tooling. Join me as I show you how we use Sherlock and Datadog to block 30,000+ fraudulent users per week in seconds. We will also discuss other applications and how you can implement similar solutions.

View Video

Datadog

Read more about Bits of Security, PedidosYa: Fraud Detection using Datadog and Sherlock

Phishing and Ransomware: Connecting the Dots!

Apr 13, 2021 By James Saturnio In Ivanti

Phishing and ransomware. Ransomware and phishing. The two are inextricably connected and are now often chained together as the most potent exploit tools in a cybercriminal’s arsenal.

Read Post

Ivanti

Read more about Phishing and Ransomware: Connecting the Dots!

Endpoint Security Data Collection Strategy: Splunk UF, uberAgent, or Sysmon?

Apr 13, 2021 By Matthias Maier In Splunk

Many threats originate from the endpoint and detecting them requires insights into what happens on the endpoint. In this post we look at different endpoint activity data sources, comparing the benefits and capabilities of Splunk Universal Forwarder with vast limits uberAgent and homegrown solutions.

Read Post

Splunk

Read more about Endpoint Security Data Collection Strategy: Splunk UF, uberAgent, or Sysmon?

The Facebook data breach that affects over 533 million users explained

Apr 13, 2021 By StatusCake Team In StatusCake

If you’re a Facebook user, brace yourself for this one. It’s recently come to light that 533 million Facebook users’ details were found on a very suspicious hacker forum. The details found include users’ phone numbers, Facebook IDs, full names, locations, birthdays, and email addresses – all typical information that is stored on a Facebook account.

Read Post

StatusCake

Read more about The Facebook data breach that affects over 533 million users explained

Assessing the cybersecurity landscape

Apr 12, 2021 By ManageEngine In ManageEngine

In the latest installment of the ManageEngine Insights' podcast, enterprise analyst John Donegan sits down with Andy Bates, the executive director of the Global Cyber Alliance. An expert in the field of cybersecurity, Bates discusses current IT security trends, attack vectors, crime deterrents, and other emerging issues, such as biometrics and blockchain technologies. Bates also addresses user psychology as it relates to IT security, as well as some of the silver linings of the COVID pandemic.

View Video

ManageEngine

Security

Read more about Assessing the cybersecurity landscape

Continuous integration that you can trust: announcing SOC 2 certification

Apr 12, 2021 By Rob Zuber In CircleCI

At CircleCI, we care about security - in 2018, we became the first CI/CD tool to meet the rigorous security and privacy standards required by government agencies to get FedRAMP authorized. Now, CircleCI is SOC 2 certified, adding another industry-recognized security accreditation.

Read Post

CircleCI

Read more about Continuous integration that you can trust: announcing SOC 2 certification

IAM Policies: Good, Bad & Ugly

Apr 12, 2021 By Chase Douglas In Stackery

In my last post we looked at the structure of AWS IAM policies and looked at an example of a policy that was too broad. Let's look at a few more examples to explore how broad permissions can lead to security concerns. By far the most common form of broad permissions occurs when policies are scoped to a service but not to specific actions.

Read Post