Security

The latest News and Information on CyberSecurity for Applications, Services and Infrastructure, and related technologies.

SolarWinds Papertrail Overview

May 7, 2021 By SolarWinds In SolarWinds

SolarWinds® Papertrail™ consolidates logs from all your systems and applications to help provide instant visibility into your log data.

View Video

SolarWinds

Read more about SolarWinds Papertrail Overview

Splunk SOAR Playbooks: Suspicious Email Domain Enrichment

May 6, 2021 By Philip Royer In Splunk

Despite the myriad pathways to initial access on our networks, phishing remains the single most popular technique for attackers. The open nature of email and our reliance on it for communication make it difficult for defenders to classify messages, so it is no surprise that suspicious email investigation is a top use case for automation. Today, we are releasing a new community playbook for Splunk SOAR (previously Splunk Phantom) to help enrich suspicious email events.

Read Post

Splunk

Read more about Splunk SOAR Playbooks: Suspicious Email Domain Enrichment

Detect application abuse and fraud with Datadog

May 5, 2021 By Mallory Mooney In Datadog

Protecting your applications from abuse of functionality requires understanding which application features and workflows may be misused as well as the ability to quickly identify potential threats to your services. This visibility is particularly critical in cases where an adversary finds and exploits a vulnerability—such as inadequate authentication controls—to commit fraud.

Read Post

Datadog

Read more about Detect application abuse and fraud with Datadog

Datadog on Security and Compliance

May 5, 2021 By Datadog In Datadog

At Datadog, customer trust and data security are of the utmost importance. As a high growth company, navigating the tradeoffs of security and development agility are especially critical. Our customers expect us to continually improve our platform, while providing a compliant, secure environment for their most critical data. Balance is key to rolling out features rapidly and keeping systems secure.

View Video

Datadog

Read more about Datadog on Security and Compliance

Perspectives from the federal public sector: Enable mission success with Elastic

May 5, 2021 By Steven Coles In Elastic

After a year of accelerated change in the federal industry, the Federal Public Sector event focused on the progress you’ve made, the trends demanding your attention, and the Elastic capabilities that continue to guide federal agencies, offices, and departments towards a search-enabled future. With a theme of Accelerate the mission.

Read Post

Elastic

Read more about Perspectives from the federal public sector: Enable mission success with Elastic

Securing AWS Fargate workloads: Meeting File Integrity Monitoring (FIM) requirements

May 4, 2021 By Alba Ferri In Sysdig

Securing AWS Fargate serverless workloads can be tricky as AWS does not provide much detail about the internal workings. After all… it’s not your business, AWS manages the scaling of underlying resources for you. :) While the security and stability of Fargate’s system is an inherent feature, Fargate follows a shared responsibility model, where you still have to take care of securing those parts specific to your application..

Read Post

Sysdig

Read more about Securing AWS Fargate workloads: Meeting File Integrity Monitoring (FIM) requirements

AWS Fargate runtime security - Implementing File Integrity Monitoring with Sysdig

May 4, 2021 By Sysdig In Sysdig

Thanks to serverless you can focus on your apps, instead of your infrastructure. Take AWS Fargate as an example. A service where you can deploy containers as Tasks, without worrying what physical machine they run on. However, without access to the host How can you detect suspicious activity? Like, file changes on your Fargate tasks? Sysdig provides runtime detection and response to secure Fargate serverless containers.

View Video

Sysdig

Read more about AWS Fargate runtime security - Implementing File Integrity Monitoring with Sysdig

Dynamic Service Graph | Tigera - Long

May 4, 2021 By Tigera In Tigera

Downtime is expensive and applications are a challenge to troubleshoot across a dynamic, distributed environment consisting of Kubernetes clusters. While development teams and service owners typically understand the microservices they are deploying, it’s often difficult to get a complete, shared view of dependencies and how all the services are communicating with each other across a cluster. Limited observability makes it extremely difficult to troubleshoot end-to-end connectivity issues which can impact application deployment.

View Video

Tigera

Read more about Dynamic Service Graph | Tigera - Long

Application Layer Observability | Tigera - Long

May 4, 2021 By Tigera In Tigera

The majority of operational problems inherent to deploying microservices in a distributed architecture are linked to two areas: networking and observability. At the application layer (Layer 7), the need to understand all aspects associated with service-to-service communication within the cluster becomes paramount. Service-to-service network traffic at this layer is often using HTTP. DevOps teams struggle with these questions: Where is monitoring needed? How can I understand the impact of issues and effectively troubleshoot? And how can I effectively protect application-layer data?

View Video

Tigera

Read more about Application Layer Observability | Tigera - Long

DNS Dashboard | Tigera - Long

May 4, 2021 By Tigera In Tigera

While it’s an essential part of Kubernetes, DNS is also a common source of outages and issues in Kubernetes clusters. Debugging and troubleshooting DNS issues in Kubernetes environments is not a trivial task given the limited amount of information Kubernetes provides for DNS queries. The DNS Dashboard in Calico Enterprise and Calico CLoud helps Kubernetes teams more quickly confirm or eliminate DNS as the root cause for microservice and application connectivity issues.

View Video