A severe vulnerability in Kubernetes, the popular open-source software for managing Linux applications deployed within containers, could allow an attacker to remotely steal data or crash production applications. Microsoft and Red Hat have issued guidance and patches; they recommend immediate updating.
Effective threat detection and containment at the organizational level now requires continuously monitoring activity across all deployed SaaS applications (e.g. Office 365, G Suite, Salesforce, etc.), all on-premises network infrastructure, endpoints and more. In today's rapidly evolving threat landscape, businesses...
For small to midsize enterprises (SMEs), the cloud is their ticket to digital transformation, giving them added flexibility and the ability to conduct business from anywhere at any time. However, cloud adoption comes in many types (private, public, hybrid) and forms (IaaS, PaaS, SaaS), each with its own cybersecurity...
How do you ensure that the cloud technologies enabling your business aren't also introducing security risks, impacting customer experience (CX), or accumulating more expenses than anticipated?
Download this eBook and learn how to:
Extend and enable your cloud infrastructure to protect your business from...
Another day, another "Have I Been Pwned" alert, this time involving 44.3 million individuals' personal details found in unsecured instances of Elasticsearch, which appear to have been left online by Data & Leads, a Toronto-based data aggregation firm.
Uber has been slammed with $1.2 million in fines by U.K. and Dutch privacy regulators for its cover-up of a 2016 data breach for more than a year. The breach exposed millions of drivers' and users' personal details to attackers, whom Uber paid $100,000 in hush money and for a promise to delete the stolen data.
FireEye is in a unique position to see global cybersecurity threats, threat actors and their impact on breached organizations. Grady Summers, FireEye's CTO, discusses how organizations can use staff and intelligence to bolster their cloud security defenses in 2019.
Grady Summers, FireEye's CTO, discusses how organizations can use staff and intelligence to bolster their cloud security defenses in this new eBook.
"It almost feels cliché, because every year we say 'the threat landscape continues to evolve' ... but this really was a unique year in terms of the types of actors we...
The security operations center (SOC) faces mountain challenges:
lack of personnel, disparate security tools, multiple alerts that
must be run down, prioritization of alerts and the transition
between incident detection and incident response.
Security affects and is affected by operational and IT
...
Networks are constantly evolving - and so are their attack surfaces. IT security pros must now contend with digital assets like cloud platforms, application containers, web applications, IoT devices, and industrial control systems. For those in critical infrastructure industries, the stakes are even...
When it comes to IT infrastructure, it's fair to say the perimeter has left the premises. In fact,
the perimeter has mostly disappeared. We are living in a new reality, one crowded with new types of dynamic IT assets.
Whether
it's discovering short-lived assets like containers, assessing the state of cloud...
Identity and access management is not about compliance anymore - It's really about security, says Gartner's Felix Gaehtgens. With cloud, virtualization, DevOps and other IT trends, IAM has evolved from being a one-off project to an ongoing initiative.
Malicious bots and botnets are becoming increasingly common and sophisticated, and enterprises need to address them in their risk assessments and security frameworks, says Akamai's Aseem Ahmed.
Protecting "East-West" cloud traffic - the traffic between apps and virtual machines - is a significant challenge, but microsegmentation can help address it, says Raghu Raghuram of VMware.
If you are reading this, it means you are taking time out of your busy schedule to search for data protection solutions. Data protection is not meant to be exciting; it's meant to automate the boring parts through automation so that your company stays out of the negative headlines.
"You get paid for...
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing careersinfosecurity.co.uk, you agree to our use of cookies.
