Containerization introduces new processes that move code through the software development pipeline at an accelerated pace and with greater flexibility (or, less oversight).
This eBook explains how DevSecOps can deliver context-aware security while automating the entire image-to-production process, allowing...
A critical part of any security infrastructure is providing the capacity to secure containerized applications across any platform, orchestrator, or cloud.
This Container Security Guide provides visual, easy-to-digest diagrams that show how to:
Ensure images are free from known vulnerabilities, secrets and...
The annual Infosecurity Europe conference this year returned to London. Here are visual highlights from the event, which featured over 240 sessions and more than 400 exhibitors, 19,500 attendees and keynotes covering data breaches, darknets, new regulations and more.
Yet another warning has been issued about the BlueKeep vulnerability in older versions of Microsoft Windows. The latest comes from the Department of Homeland Security, which tested a remote code execution exploit.
Medical device vendor Becton Dickinson and U.S. federal regulators have issued security alerts about vulnerabilities that potentially put certain infusion pump products from the manufacturer at risk for remote hacker attacks.
When it comes to drivers for implementing and maintaining privileged access management programs, Wallix's Grant Burst says that demonstrating compliance and safety remain top priorities. Another driver, he says, is the sheer interconnectedness of devices - driven by the rise of IoT.
After a two-year absence, the FIN8 hacking group has returned with a new campaign targeting POS machines in the hotel industry with malware in an effort to steal credit card information and other data, according to new research.
The amount of malware that targets IoT devices has grown more than 80 percent in the past year, says Shrenik Bhayani of Kaspersky Lab. He provides an overview of the changing threat landscape, including attacks on critical infrastructure.
A security researcher has posted a demonstration showing how an attacker could exploit the BlueKeep vulnerability to take over a Windows device in a matter of seconds. Meanwhile, the NSA has joined Microsoft in urging users to patch devices before an attacker takes advantage of this vulnerability.
Organizations and their applications are under attack from automated bots and bad actors. And many of these attacks are undetectable by conventional security technologies. How can organizations detect and prevent this activity? Carl Gustas of Cequence Security shares insights.
Ransomware attacks, such as WannaCry and Petya, in which data is encrypted until a ransom is paid, are trending upward. As noted in the 2018 ISTR, although the number of ransomware families has decreased year over year, the number of ransomware variants has increased by 46 percent. This indicates criminal groups may...