Security

The latest News and Information on CyberSecurity for Applications, Services and Infrastructure, and related technologies.

Ensuring Availability and Security for Remote Workers

Aug 11, 2020 By David Townsend In Flowmon

The year 2020 has seen various changes throughout the world but no change has seen more of an impact than the Corona-virus. During this epidemic, workers from all industries have moved from a traditional office-based role to WFH (Working From Home). It’s known as a business transforms it brings new risks associated with it. New and emerging technologies and the practices they involve require operational, policy and security measures to be implemented and evolved over time.

Read Post

Flowmon

Read more about Ensuring Availability and Security for Remote Workers

Hey, [Insert Family/Friend Name Here], Let's Talk About Online Security

Aug 11, 2020 By Chrystal Taylor In SolarWinds

2020 keeps on proving the old adage, “It gets worse before it gets better.” We still seem to be in the “worse” stage. If you’ve been paying attention to the news—and I don’t blame you if you’ve been taking a break for sanity’s sake—you might have noticed (in addition to the reports about the pandemic and social issues) hacks and general security breaches have been ramping up.

Read Post

SolarWinds

Read more about Hey, [Insert Family/Friend Name Here], Let's Talk About Online Security

Logging Best Practices Part 6: Security and Compliance

Aug 11, 2020 By Laura Santamaria In Mezmo

Isn’t all logging pretty much the same? Logs appear by default, like magic, without any further intervention by teams other than simply starting a system… right?

Read Post

Mezmo

Read more about Logging Best Practices Part 6: Security and Compliance

About RapidSpike

Aug 10, 2020 By RapidSpike In RapidSpike

RapidSpike acts like your online customers, creating key insights that improve websites, increase performance & detect client-side attacks.

View Video

RapidSpike

Read more about About RapidSpike

How Calico Enterprise Enables Your Kubernetes Multi-Tenancy

Aug 7, 2020 By Tigera In Tigera

In this talk, we will explore Kubernetes multi tenancy concepts and design patterns. Specifically, we will go over the network and network security design patterns needed for enabling multi tenancy within your k8s clusters using key capabilities of Calico Enterprise. Explore multi-tenancy use-cases in Kubernetes Learn about the core concepts and design patterns behind multi tenancy in Kubernetes Understand the key capabilities of Calico and Calico Enterprise that enable multi tenancy

View Video

Tigera

Read more about How Calico Enterprise Enables Your Kubernetes Multi-Tenancy

How to monitor etcd

Aug 6, 2020 By David Lorite Solanas In Sysdig

Learning how to monitor etcd is of vital importance when running Kubernetes in production. Monitoring etcd will let you validate that the service performs as expected, while detecting and troubleshooting issues that could take your entire infrastructure down. Keep reading to learn how you can collect the most important metrics from etcd and use them to monitor this service. etcd is a foundational component of the Kubernetes control plane.

Read Post

Sysdig

Read more about How to monitor etcd

Enabling Microsegmentation with Calico Enterprise

Aug 6, 2020 By Bikram Gupta In Tigera

Microsegmentation is a security technique that is used to isolate workloads from one another. Microsegmentation limits the blast radius of a data breach by making network security more granular. Should a breach occur, the damage is confined to the affected segment. Application workloads have evolved over time – starting from bare metal, to a mix of on-prem and cloud virtual machines and containers.

Read Post

Tigera

Read more about Enabling Microsegmentation with Calico Enterprise

No, You Still Don't Need a Blockchain

Aug 6, 2020 By Thomas LaRock In SolarWinds

A couple of years ago, I wrote about why you don’t need a blockchain. Blockchain is one long transaction log that always gets written to and is never backed up. It’s a ledger, more or less, with some math. And while distributed ledgers can be useful for some scenarios, I’m here today to say you still don’t need a blockchain. What turns a distributed ledger into a blockchain is cryptography for creating a digital signature to reduce the risk of data tampering.

Read Post

SolarWinds

Read more about No, You Still Don't Need a Blockchain

Collecting and analyzing Zeek data with Elastic Security

Aug 6, 2020 By Michael Young In Elastic

In this blog, I will walk you through the process of configuring both Filebeat and Zeek (formerly known as Bro), which will enable you to perform analytics on Zeek data using Elastic Security. The default configuration for Filebeat and its modules work for many environments; however, you may find a need to customize settings specific to your environment.

Read Post

Elastic

Read more about Collecting and analyzing Zeek data with Elastic Security

Fitness Websites Under Attack by Magecart

Aug 5, 2020 By Georgina Grant-Muller In RapidSpike

Our sources state that there has been a 20% increase in web-skimming attacks since the outbreak of the COVID-19 virus. Recently, we have witnessed some high-profile Magecart attacks on websites which have gained popularity during the pandemic, including fitness-based websites. The latest fitness-based website attack reported is YogaFit, who were compromised for over 6 weeks.

Read Post