How fast should you patch?
Microsoft releases a horde of new software updates. How fast should I apply updates when my vendor releases them? Here are some considerations.
vulnerability
Book recommendation: “The Cybersecurity Body of Knowledge”
In cybersecurity, fighting fires is important, but it’s just not enough. This book will help you develop a more strategic approach.
How safe is your sensitive business data on Microsoft Azure?
Malicious actors are constantly thinking up new ways of compromising your business data stored in the Azure cloud. Here’s how to fight back.
Exchange Server hack fallout: Problems, solutions, and mitigations
Are you still scrambling to deal with the fallout of the massive Microsoft Exchange Server hack that has occurred? This article will help.
Kubernetes security: Protecting apps from unpatched vulnerabilities
As Kubernetes grows in popularity, security becomes a major concern. But what if a vendor doesn’t release a patch for a known bug or vulnerability?
A sysadmin’s patch management conundrum: Patch now or wait?
Patch management is usually thought to mean updating as soon as a patch is available. But sometimes, patch management may mean wait and see.
Finding API code vulnerabilities before they reach production
A powerful add-on for GitHub’s code-scanning feature lets you get your API code analyzed for security flaws on each code change in the repository.
The case against using Microsoft’s Local Administrator Password Solution (LAPS)
Microsoft LAPS makes it easy to securely manage local account passwords of domain-joined computers. But it may also have a glaring security issue.
Simjacker spying vulnerability could affect 1B phones
Simjacker opens up 1 billion users to spying from governments, and researchers believe it is already being leveraged by several nations.
Breach and attack simulation: Risks and rewards of BAS solutions
Having a cybersecurity expert simulate an attack on your network with a BAS product can reap big benefits — if you avoid the missteps.