News

All The Latest!

Keeping up with cyber-news is hard. Enjoy our specially curated collection of various RSS feeds to help make finding relevant news a little less tedious. If you have something to share, be sure to let us know!

CSA Feed

  • Container Security Best Practices in Microservices
    January 13, 2022

    The best practices in this blog assume that you have selected a microservices deployment model that leverages containers. For microservices and security to co-exist, a framework and plan for developme …

  • Securing DevOps: The ABCs of Security-as-Code
    January 11, 2022

    Written by Tony Karam, Concourse Labs. Cybersecurity Built for Public Cloud Traditional cybersecurity architectures and models break down when applied to public cloud. Most public cloud breaches stem …

  • Log4j: The Evolution of Vulnerabilities to CVE-2021-45046 and What to Expect in 2022
    January 11, 2022

    This blog was originally published by Alert Logic here. Written by Josh Davies, Alert Logic. Threat Overview The internet has been alive with talk of Log4Shell (CVE-2021-44228), and for good reason. W …

  • What is a Vulnerability?
    January 11, 2022

    A philosophical but practical exploration of technical vulnerabilitiesLet’s check Merriam-Webster:open to attack or damageThis doesn’t feel complete. What’s missing? Let’s check Wikipedia:In computer …

  • Securing Data Lakes in a Data Centric World
    January 11, 2022

    Written by Dr. Diane Murphy, Marymount University and Oliver Forbes, NTT DATA Data allows the business of today to optimize performance, investigate fraud and discover solutions to problems that we di …

Tech Target

Schneier On Security

  • Are Fake COVID Testing Sites Harvesting Data?
    January 19, 2022

    Over the past few weeks, I’ve seen a bunch of writing about what seems to be fake COVID-19 testing sites. They take your name and info, and do a nose swab, but you never get test results. Speculation …

  • UK Government to Launch PR Campaign Undermining End-to-End Encryption
    January 18, 2022

    Rolling Stone is reporting that the UK government has hired the M&C Saatchi advertising agency to launch an anti-encryption advertising campaign. Presumably they’ll lean heavily on the “think of t …

  • An Examination of the Bug Bounty Marketplace
    January 17, 2022

    Here’s a fascinating report: “Bounty Everything: Hackers and the Making of the Global Bug Marketplace.” From a summary: …researchers Ryan Ellis and Yuan Stevens provide a window into the working lives …