Security News > 2020 > December > Week in review: Most effective security practices, worst password offenders, Patch Tuesday forecast

Open source vulnerabilities go undetected for over four yearsFor its annual State of the Octoverse report, GitHub has analyzed over 45,000 active code directories to provide insight into open source security and developers' practices regarding vulnerability reporting, alerting and remediation.

Which security practices lead to best security outcomes?A proactive technology refresh strategy and a well-integrated tech stack are, according to a recent Cisco report, two security practices that are more likely than many others to help organizations achieve goals such as keeping up with business, creating security culture, managing top risks, avoiding major incidents, and so on.

Cloud native security: A maturing and expanding arenaIt's not only Kubernetes security you need to consider when deploying cloud native technologies, but also the security of the surrounding tools.

Foiling RaaS attacks via active threat huntingIn this Help Net Security podcast, Jon DiMaggio, Chief Security Strategist at Analyst1, talks about the characteristic of attacks launched by Ransomware-as-a-Service gangs and how organizations can prevent them from succeeding.

The challenges of keeping a strong cloud security postureIn this interview, Badri Raghunathan, Director of Product Management for Container and Serverless Security at Qualys, talks about cloud security, and their approach for enabling global CISOs to focus on what's most important.

News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/aCj1h6-0izs/