Context On May 19, 2022, security researchers at Sentinel Labs released technical details of a campaign targeting the Rust development community with a supply-chain attack by leveraging a malicious crate. The Rust Security Response Working Group released an advisory regarding the malicious crate on May 10, 2022. The malicious crate was named “rustdecimal,” likely intended…
Read More
This month’s member spotlight is Chad Whitman, Vice President, Security Engineering at Signet Jewelers. Chad had an interest in computers from a young age but was also interested in business. This dual combination led him to Purdue University’s computer technology program, which offered a blend of computer science, technology, and business courses. After Chad earned…
Read More
You want to take advantage of the benefits of a public cloud environment, including cost savings and increased flexibility, but you’re not quite ready to relinquish complete control of your most sensitive data. A hybrid cloud strategy is the solution for organizations that want the best of both worlds. A hybrid environment allows companies to…
Read More
Moving operations to the cloud allows companies to cost-effectively do business with a global customer base and workforce. However, cloud computing comes with additional security challenges that require tools to manage effectively. These tools offer visibility across a variety of cloud environments and help automate detection of vulnerabilities and configuration/compliance risks. Here we break down…
Read More
Vulnerability management is the process of identifying, investigating, correcting, and reporting on security threats in our systems and software. As organizations transition away from strictly on-premises environments in favor of public and hybrid clouds, security professionals have been forced to reevaluate traditional vulnerability management practices that are no longer sufficient in the fast-paced cloud environment….
Read More
