Кибербезопасность - статьи и блоги

Безопасность • DZone Security • 7 декабря 2023 г. 18:45

Using IAM Authentication for Redis on AWS

Amazon MemoryDB for Redis has supported username/password-based authentication using Access Control Lists since the very beginning. But you can also use IAM-based authentication that allows you to associate IAM users and roles with MemoryDB users so...... читать далее

Безопасность • DZone Security • 6 декабря 2023 г. 21:14

Using Falco to Create Custom Identity Detections

Identity Threat Detection and Response (ITDR) in the cloud is essential to limit access to sensitive data and maintain the integrity of cloud infrastructure. Leading cloud providers like AWS, Microsoft Azure, and Google Cloud have implemented robust...... читать далее

Безопасность • Блог Касперского • 6 декабря 2023 г. 18:41

Письма с Remcos RAT, хранящимся в Discord | Блог Касперского

Злоумышленники рассылают Remcos RAT под видом писем от нового клиента, пряча зловред в аттачментах Discord.... читать далее

SMB Бизнес Угрозы RAT почта рассылки трояны

Безопасность • DZone Security • 6 декабря 2023 г. 18:30

Continuous Testing in the Era of Microservices and Serverless Architectures

The pursuit of speed and agility in software development has given rise to methodologies and practices that transcend traditional boundaries. Continuous testing, a cornerstone of modern DevOps practices, has evolved to meet the demands of accelerated...... читать далее

Безопасность • DZone Security • 6 декабря 2023 г. 13:32

WebAuthn Conditional UI: Technical Explanation and Implementation

With the rapid adoption of passkeys (and the underlying WebAuthn protocol), authentication has become more secure and user-friendly for many users. One of the standout advancements of passkeys has been the integration of Conditional UI, often referre...... читать далее

Безопасность • DZone Security • 5 декабря 2023 г. 18:26

Comprehensive Cloud Monitoring Platforms: Ensuring Optimal Performance and Security in the Cloud

The unprecedented scalability, flexibility, and cost-efficiency offered by cloud computing have completely changed the way businesses operate. However, as businesses move their infrastructure and applications to the cloud, they encounter new difficul...... читать далее

Безопасность • DZone Security • 5 декабря 2023 г. 17:21

Safeguarding Data Exchange: A Comprehensive Overview of API Gateways and Their Imperative Role in Ensuring Robust Security

In today's interconnected digital landscape, the proliferation of Application Programming Interfaces (APIs) has revolutionized the way systems communicate and exchange data. Yet, with this seamless connectivity comes the inherent vulnerability of exp...... читать далее

Безопасность • DZone Security • 5 декабря 2023 г. 14:08

Securing REST APIs With Nest.js: A Step-by-Step Guide

This guide walks you through setting up a secure REST API using Nest.js in Node.js. We'll create a login system with JWTs and implement best practices for token management and API security. Setting Up Nest.js Prerequisites: Node.js installed.... читать далее

Безопасность • DZone Security • 5 декабря 2023 г. 12:34

DevSecOps: Shifting Security to the Left

Modern-day software development approaches like DevOps have certainly reduced development time. However, tighter release deadlines push security practices to a corner. This blog explains how Shifting Security to the Left introduces security in the ea...... читать далее

Безопасность • Блог Касперского • 5 декабря 2023 г. 11:12

Что такое «Настройки с ограниченным доступом» в Android | Блог Касперского

Объясняем, что такое «Настройки с ограниченным доступом» в Android 13 и 14, от чего этот механизм должен защищать и как его обходят вирусы и пользователи.... читать далее

Советы Угрозы android безопасность мобильные устройства настройки разрешения приложений смартфоны советы угрозы

Безопасность • DZone Security • 4 декабря 2023 г. 21:43

Navigating API Governance: Best Practices for Product Managers

In the ever-evolving landscape of digital integration, APIs (Application Programming Interfaces) serve as the conduits that connect disparate systems, enabling seamless communication and fostering innovation. As the architects of digital experiences,...... читать далее

Безопасность • DZone Security • 4 декабря 2023 г. 15:30

Harnessing the Power of APIs: Shaping Product Roadmaps and Elevating User Experiences through Authentication

In the dynamic landscape of digital product development, APIs (Application Programming Interfaces) have emerged as indispensable tools that not only connect systems but also play a pivotal role in shaping product roadmaps. In this exploration, we wil...... читать далее

Безопасность • DZone Security • 4 декабря 2023 г. 14:37

Data Privacy and Security

Organizations are gradually becoming concerned regarding data security in several instances, such as collecting and retaining sensitive information and processing personal information in external environments, which include information sharing and cl...... читать далее

Безопасность • DZone Security • 4 декабря 2023 г. 13:28

Master the Art of Data Security: A Complete Guide To Securing Data at Rest on Amazon S3

As we step further into the digital age, the importance of data security becomes increasingly apparent. Our interactions, transactions, and even our identities are frequently translated into data, which is stored, transferred, and processed in the di...... читать далее

Безопасность • DZone Security • 4 декабря 2023 г. 12:30

Kubernetes DaemonSet: Practical Guide to Monitoring in Kubernetes

As teams moved their deployment infrastructure to containers, monitoring and logging methods changed a lot. Storing logs in containers or VMs just doesn’t make sense – they’re both way too ephemeral for that. This is where solutions like Kubernetes D...... читать далее

Безопасность • DZone Security • 3 декабря 2023 г. 17:24

How to Do a Risk Analysis Service in a Software Project

Software projects are vulnerable to countless attacks, from the leak of confidential data to exposure to computer viruses, so any development team must work on an effective risk analysis that exposes any vulnerabilities in the software product. A wel...... читать далее

Безопасность • DZone Security • 2 декабря 2023 г. 21:24

What to Do if You Expose a Secret: How to Stay Calm and Respond to an Incident

You probably are here because you leaked a secret somewhere and want to get straight to rotating the secret. If you are a solo developer or you know for sure you are the only user of the secret and understand what rotating the secret might disrupt, s...... читать далее

Безопасность • DZone Security • 2 декабря 2023 г. 15:29

Understanding the New SEC Rules for Disclosing Cybersecurity Incidents

The U.S. Securities and Exchange Commission (SEC) recently announced its new rules for public companies regarding cybersecurity risk management, strategy, governance, and incident exposure. Some requirements apply to this year—for example, disclosure...... читать далее

Безопасность • DZone Security • 1 декабря 2023 г. 19:45

Java 11 to 21: A Visual Guide for Seamless Migration

In the ever-evolving software development landscape, staying up-to-date with the latest technologies is paramount to ensuring your applications' efficiency, security, and maintainability. As a stalwart in the world of programming languages, Java cont...... читать далее