News, Insight and Analysis

News

• New Splunk CEO inherits a company in transition

  Splunk is at a crossroads as a new chief executive takes over and the vendor navigates the classic Innovator's Dilemma. Continue Reading

• OpenSSF adds $10M to software supply chain security effort

  IT pros hope for improved software supply chain security standards from OpenSSF, a Linux Foundation group that gained momentum with new funding this week. Continue Reading

• How hackers exploited RCE vulnerabilities in Atlassian, Azure

  Barracuda researchers examined exploitation activity and attack patterns for two remote code execution vulnerabilities affecting Atlassian's Confluence and Microsoft's Azure. Continue Reading

• CloudBees refocuses with IT compliance automation buy

  CloudBees previews the fruits of a quietly acquired stealth IT compliance automation startup and modifies its platform plans under new executive leadership. Continue Reading

• Microsoft details 'OMIGOD' Azure vulnerability fixes, threats

  Microsoft fixed the open source OMI software during last week's Patch Tuesday, but the tech giant has struggled to get the updated agents to Azure customers. Continue Reading

Get Started

• Cloud security automation: Benefits and best practices

  Automating security in the cloud can be invaluable for threat detection and mitigation. Explore key areas where security professionals should implement automation. Continue Reading

• Build your knowledge of Azure AD conditional access policies

  The rapid pace of change in the modern workplace requires new methods to control who has access to what. This Azure Active Directory feature can help IT meet those security goals. Continue Reading

• Working with PowerShell Secret Management and Secret Vault

  The two new PowerShell modules put API keys, credentials and other secrets under lock and key to protect sensitive information in automation and remoting scenarios. Continue Reading

• What are cloud containers and how do they work?

  Containers in cloud computing have evolved from a security buzzword. Deployment of cloud containers is now an essential element of IT infrastructure protection. Continue Reading

• Invest in cloud security to future-proof your organization

  The cloud has opened many opportunities for enterprises to maintain operations during the pandemic, but it has also created numerous security challenges that must be addressed. Continue Reading

Evaluate

• What is cloud security management? A strategic guide

  This cloud security guide explains challenges enterprises face today; best practices for securing and managing SaaS, IaaS and PaaS; and comparisons of cloud-native security tools. Continue Reading

• Explore CASB use cases before you decide to buy

  CASB tools help secure cloud applications so only authorized users have access. Discover more about this rapidly evolving technology and its use cases. Continue Reading

• Private vs. public cloud security: Benefits and drawbacks

  Uncover the differences between private vs. public cloud security -- as well as hybrid cloud security and multi-cloud security -- before deciding on an enterprise deployment model Continue Reading

• Pros and cons of 10 common hybrid cloud use cases

  For businesses contemplating the advantages and disadvantages of their applications living in a distributed cloud infrastructure, take a cue from these hybrid cloud use cases. Continue Reading

• Cloud-native security benefits and use cases

  'Cloud native' has described applications and services for years, but its place in security is less clear. Get insight into cloud-native security from expert Dave Shackleford. Continue Reading

Manage

• 8 SaaS security best practices for 2024

  SaaS has become ubiquitous. To secure it, take steps to inventory SaaS usage, securely authenticate usage, encrypt data, adopt single sign-on and more. Continue Reading

• 10 cloud vulnerabilities that can cripple your environment

  Enterprises can be devastated by security-related weaknesses or flaws in their cloud environments. Find out where you are most vulnerable before an attacker comes knocking. Continue Reading

• 5 PaaS security best practices to safeguard the app layer

  Underlying APIs, language choice and cybersecurity features can vary widely across PaaS providers. These five security best practices can help in almost any PaaS scenario. Continue Reading

• 5-step IaaS security checklist for cloud customers

  Get expert advice on patching, data encryption, and identity and access management responsibilities in this enterprise IaaS security checklist. Continue Reading

• Learn to adjust the AdminCount attribute in protected accounts

  It's critical to know how to change the settings for protected accounts and groups in Active Directory to avoid serious problems. PowerShell can make quick edits to keep order. Continue Reading

Problem Solve

• Enterprise cybersecurity hygiene checklist for 2025

  Enterprise cybersecurity hygiene must be a shared responsibility between employees and employers. Learn how both can get the job done with this checklist. Continue Reading

• Top 11 cloud security challenges and how to combat them

  Before jumping feet first into the cloud, understand the new and continuing top cloud security challenges your organization is likely to face -- and how to mitigate them. Continue Reading

• Factor performance into an application modernization strategy

  Dev teams increasingly use cloud, containers and microservices to modernize apps, but these technologies bring little value unless they boost performance, which is no guarantee. Continue Reading

• An inside look at the CCSP cloud security cert

  Get insights into the Certified Cloud Security Professional cert, cloud infrastructure and platform benefits and risks, and more from the author of a CCSP exam guide. Continue Reading

• How to address and close the cloud security readiness gap

  Cloud security readiness remains a shortcoming for companies despite the majority using cloud services. Here are three steps they can take to close the cloud security gap. Continue Reading