Security News > 2020 > December > Week in review: Most effective security practices, worst password offenders, Patch Tuesday forecast
Open source vulnerabilities go undetected for over four yearsFor its annual State of the Octoverse report, GitHub has analyzed over 45,000 active code directories to provide insight into open source security and developers' practices regarding vulnerability reporting, alerting and remediation.
Which security practices lead to best security outcomes?A proactive technology refresh strategy and a well-integrated tech stack are, according to a recent Cisco report, two security practices that are more likely than many others to help organizations achieve goals such as keeping up with business, creating security culture, managing top risks, avoiding major incidents, and so on.
Cloud native security: A maturing and expanding arenaIt's not only Kubernetes security you need to consider when deploying cloud native technologies, but also the security of the surrounding tools.
Foiling RaaS attacks via active threat huntingIn this Help Net Security podcast, Jon DiMaggio, Chief Security Strategist at Analyst1, talks about the characteristic of attacks launched by Ransomware-as-a-Service gangs and how organizations can prevent them from succeeding.
The challenges of keeping a strong cloud security postureIn this interview, Badri Raghunathan, Director of Product Management for Container and Serverless Security at Qualys, talks about cloud security, and their approach for enabling global CISOs to focus on what's most important.
News URL
http://feedproxy.google.com/~r/HelpNetSecurity/~3/aCj1h6-0izs/
Related news
- Week in review: Vulnerability allows Yubico security keys cloning, Patch Tuesday forecast (source)
- Week in review: Tips for starting your cybersecurity career, Patch Tuesday forecast (source)
- AMD won’t patch Sinkclose security bug on older Zen CPUs (source)
- Microsoft August 2024 Patch Tuesday fixes 9 zero-days, 6 exploited (source)
- Fortra Issues Patch for High-Risk FileCatalyst Workflow Security Vulnerability (source)
- September 2024 Patch Tuesday forecast: Downgrade is the new exploit (source)
- Microsoft September 2024 Patch Tuesday fixes 4 zero-days, 79 flaws (source)
- Patch Tuesday for September 2024: Microsoft Catches Four Zero-Day Vulnerabilities (source)
- Microsoft confirms IE bug squashed in Patch Tuesday was exploited zero-day (source)
- October 2024 Patch Tuesday forecast: Recall can be recalled (source)