%term

The latest News and Information on CyberSecurity for Applications, Services and Infrastructure, and related technologies.

How to Conduct a Workplace Risk Assessment

May 26, 2023 By OpsMatters In OpsMatters

Workplaces are unavoidably hazardous places, no matter how anodyne they may seem from outside. Administrative offices may have chemical cleaning products lurking behind kitchenette cupboards, or electrical hazards within arm's reach of a desk. For this reason, risk assessments are a vital part of every business' health and safety programmes. How should one be conducted, though?

Read Post

OpsMatters

Read more about How to Conduct a Workplace Risk Assessment

How to secure your MLOps tooling?

May 26, 2023 By Andreea Munteanu In Canonical

Generative AI projects like ChatGPT have motivated enterprises to rethink their AI strategy and make it a priority. In a report published by PwC, 72% of respondents said they were confident in the ROI of artificial intelligence. More than half of respondents also state that their AI projects are compliant with applicable regulations (57%) and protect systems from cyber attacks, threats or manipulations (55%). Production-grade AI initiatives are not an easy task.

Read Post

Canonical

Read more about How to secure your MLOps tooling?

SSL Handshakes Explained #ssl #frontend #frontenddeveloper #cloudservices

May 26, 2023 By Sematext In Sematext

View Video

Sematext

Read more about SSL Handshakes Explained #ssl #frontend #frontenddeveloper #cloudservices

How to manage CVE security vulnerabilities with Grafana, MergeStat, and OSV-Scanner

May 25, 2023 By Patrick DeVivo In Grafana

Patrick DeVivo is a software engineer and founder of MergeStat, an open source project that makes it possible to query the contents, history, and metadata of source code with SQL. The security posture of software supply chains has been a significant topic lately. Recent high-profile breaches have shown the importance of managing risks from third party code. Take, for example, the Log4Shell vulnerability (tracked as CVE-2021-44228 — Grafana Labs was not affected).

Read Post

Grafana

Read more about How to manage CVE security vulnerabilities with Grafana, MergeStat, and OSV-Scanner

Revisit - the Balancing Act of Staying Secure While Working From Home: Ep. 11

May 25, 2023 By Ivanti In Ivanti

Welcome to Security Insights: where best-practice cybersecurity meets the real-world risks, workplaces, and roadblocks you face every day. Join Chris Goettl, head of Endpoint Security Product Management, and Ashley Stryker, your cybersecurity "rubber duck", as they review the security strategies and tactics that truly matter to the information security teams protecting organizations, agencies, and businesses like yours.

View Video

Ivanti

Read more about Revisit - the Balancing Act of Staying Secure While Working From Home: Ep. 11

The Ultimate Guide to Automating and Mobilizing Your Secops Processes with Derdack SIGNL4 and Microsoft Sentinel

May 24, 2023 By emily In SIGNL4

The threat and security landscape is becoming increasingly cluttered. As incidents increase, so do alerts and notifications, leading to too many alerts and too few hours to address them. Many businesses work remote and with the ever-present smartphones, we are always on the go. Yet it is essential that security teams receive and prioritize meaningful threats, but that task is easier said than done.

Read Post

SIGNL4

Read more about The Ultimate Guide to Automating and Mobilizing Your Secops Processes with Derdack SIGNL4 and Microsoft Sentinel

Achieving High Availability (HA) Redis Kubernetes clusters with Calico Clustermesh in Microsoft AKS

May 24, 2023 By Kartik Bharath In Tigera

According to the recent Datadog report on real world container usage, Redis is among the top 5 technologies used in containerized workloads running on Kubernetes. Redis database is deployed across multi-region clusters to be Highly Available(HA) to a microservices application.

Read Post

Tigera

Read more about Achieving High Availability (HA) Redis Kubernetes clusters with Calico Clustermesh in Microsoft AKS

The Ripple Effect of Meta's $1.3 Billion GDPR Fine for Businesses That Handle Data

May 24, 2023 By Jackie McGuire In Cribl

Meta, the parent company of Facebook, has been fined a record €1.2 billion ($1.3 billion) by the European Union for violating its data privacy laws. The fine was issued by Ireland’s Data Protection Commission, which is Meta’s lead regulator in the EU, and is the largest ever levied under the EU’s General Data Protection Regulation (GDPR), which went into effect in 2018.

Read Post

Cribl

Read more about The Ripple Effect of Meta's $1.3 Billion GDPR Fine for Businesses That Handle Data

A comprehensive review of the best vulnerability scanning tools

May 24, 2023 By Cortex In Cortex

In this article, we explore the features and capabilities of the top five vulnerability scanning tools so that you can consider all the key factors before selecting one.

Read Post

Cortex

Read more about A comprehensive review of the best vulnerability scanning tools

A guide to static application security testing (SAST)

May 24, 2023 By Jacob Schmitt In CircleCI

Static application security testing (SAST) involves analyzing source code to identify and address potential security vulnerabilities. Using SAST early in development identifies threats before they can affect a live environment. SAST is particularly important for continuous integration and continuous deployment (CI/CD) pipelines. These pipelines automate the integration of new code changes into the main codebase and deploy applications to production environments.

Read Post