Systems | Development | Analytics | API | Testing

Security

stackify

Kubernetes Security Best Practices You Must Know

Jul 31, 2020 By Ilai Bavati In Stackify

Kubernetes (k8s) enables you to efficiently orchestrate container management, in the cloud or on-premises. As a whole, k8s provides many benefits, including features for self-healing, automated rollouts and rollbacks, load distribution, and scalability. However, k8s is a highly complex platform and requires extensive configuration.

Read Post

Security Never Sleeps: Why a Secure Network is a Must for Testing in the Age of Remote Work

Jul 31, 2020 By Sauce Labs In Sauce Labs

In this webinar, security experts Sivan Tehila and Justin Dolly will discuss:

  • The various threats to your network and to your testing environment that have come about as a result of remote work
  • How cybersecurity is an integral part of the organization's business continuity plan
  • Tips and best practices for securing the home network when the endpoint is now everywhere

View Video
honeybadger

Protecting Your Apps From Link-based Vulnerabilities: Reverse Tabnabbing, Broken-Link Hijacking, and Open Redirects

Jul 28, 2020 By Julien Cretel In Honeybadger

Links are so fundamental to web development that they're almost invisible. When we link to a third-party page, we hardly ever consider how it could become an opportunity to exploit our users. In this article, Julien Cretel introduces us to three techniques that bad actors can use to target our users and discusses how to avoid them.

Read Post

Use AI To Quickly Handle Sensitive Data Management

Jul 27, 2020 By Hitachi Vantara In Hitachi Vantara
The growing waves of data that you’re pulling in include sensitive, personal or confidential data. This can become a compliance nightmare, especially with rules around PII, GDPR and CCPA, and it takes too much time to manually decide what should be protected. In this session, we will show how AI-driven data catalogs can identify sensitive data and share  that identification with your data security platforms to automate its discovery, identification and security.  You'll see how this dramatically reduces your time to onboard data and makes it safely available  to your business  communities.
View Video
stackify

How to Incorporate Security Into Your company's SDLC

Jul 24, 2020 By Piyush Jain In Stackify

It’s been shown that if you follow a proven collection of practices for developing, designing, testing, implementing, and maintaining your software, you will produce a much higher quality product. Over the past few years, we have seen an increasing number of cases of attacks on the application layer. The Open Web Application Security Project, OWASP, estimates that around one-third of web applications contain security vulnerabilities.

Read Post
sauce labs

What Security Means for Web and Mobile Application Testing

Jul 23, 2020 By Zev Brodsky In Sauce Labs

Employees today are more mobile than ever. As we saw, due to COVID-19 the majority of organizations moved their employees to a work from home model overnight. This quick change of location forced businesses to implement solutions that would provide their workforces secure remote access to an increasingly complex corporate network.

Read Post
snowflake

Snowflake Service Account Security, Part 3

Jul 15, 2020 By Jonathan Sander In Snowflake

In Part 1 and Part 2 of this blog post series, Snowflake Service Account Security, discussed service accounts threats and how to mitigate those threats with Snowflake features. Part 3 demonstrates how to manage credential rotation with a sample Hashicorp Vault plugin. You can use many platforms to achieve similar results. The important thing is to understand the patterns used to apply these controls to protect your service accounts.

Read Post
snowflake logo

5 Strategies to Improve Secure Data Collaboration

Jul 10, 2020 By Snowflake
Many organizations struggle to share data internally across departments and externally with partners, vendors, suppliers, and customers. They use manual methods such as emailing spreadsheets or executing batch processes that require extracting, copying, moving, and reloading data. These methods are notorious for their lack of stability and security, and most importantly, for the fact that by the time data is ready for consumption, it has often become stale.
Get EBook
moesif

Top 10 API Security Threats Every API Team Should Know

Jul 8, 2020 By Derric Gilling In Moesif

As more and more data is exposed via APIs either as API-first companies or for the explosion of single page apps/JAMStack, API security can no longer be an afterthought. The hard part about APIs is that it provides direct access to large amounts of data while bypassing browser precautions. Instead of worrying about SQL injection and XSS issues, you should be concerned about the bad actor who was able to paginate through all your customer records and their data.

Read Post
Subscribe to Security

Copyright © 2024 OpsMatters™. All rights reserved.