Discover the secret C-Suite leaders use to protect their company and free up IT resources simultaneously in The Enterprise Leader’s Guide to Cybersecurity Resilience
Welcome to the final installment of our five-part series looking at code bugs responsible for the vulnerabilities and exploits we try to stay safe from. In this part, we’ll go over the final five entries in the Mitre CWE Top 25, from #5 down to #1. You can find part 1 here, part 2 […]
Welcome to part four of the five-part series where we look at the code bugs that explain the many exploits reported on a regular basis. We’ll be looking at the Mitre CWE Top 25 list for 2022, and going over entries #10 to #6 in the list. A standout entry in this part is “Use […]
This is part three of our five-part blog series exploring the code bugs that lead to the vulnerabilities showing up every day. In this part, we’ll cover bugs #15 to #11 of the Mitre CWE Top 25 list for 2022, including everyone’s favorite, “NULL pointer dereference”, at #11. You can find part 1 here and […]
We continue to look at the code issues that cause the vulnerabilities impacting the IT world. In this installment of our five-part blog series exploring these bugs, we go through bugs #20 to #16 in the Mitre CWE Top 25 list for 2022 – providing context and additional information on the actual code problems that […]
It’s common to hear about new vulnerabilities and exploits, some of which even get fancy names of their own, but sometimes the details of how they appear are buried under proof-of-concept code and impact scores. This series of articles will demystify these hidden bugs by providing insight into the actual code issues that are at […]
With the Linux open-source community, you have the power of developers to add to its codebase as well as improve features and performance. However, this environment also means that hackers have access to the source code, making Linux-based devices, including critical servers, susceptible to potential vulnerabilities. Known vulnerabilities are reported to a centralized NIST vulnerability […]
Testing is essential for any software update including patches, but it’s even more essential when changes are made to critical infrastructure that powers revenue-impacting services. Release of security updates that are not thoroughly tested may result in kernel crashes, operating system reboots, system- or service-level failures – some of these aftermaths are critical and some […]
With the increasing sophistication of attacks, there is no more pressing time for IT security than now. Linux stands even here; behind most servers, devices, and cloud infrastructures. Security audits are one of the most important components of keeping a secure Linux environment. Effective patch management is made possible by security audits; they help identify, […]
“We’re just doing what cve.org wants us to do” was repeated multiple times by Greg K-H in a recent presentation. Earlier this year, the Kernel team’s new CNA (CVE Numbering Authority) status surprised many in the security space. Not only was the previous stance completely opposed to the CVE system – “Burn them down!” was […]
Patch management is an essential practice for maintaining software security and performance, addressing vulnerabilities through software updates. Risk-based patch management (RBPM) prioritizes these updates based on the severity of threats. Let’s take a look at the significance, benefits, and best practices for implementing RBPM in today’s cybersecurity landscape. What is Patch Management? Patch management […]
xz is a widely distributed package that provides lossless compression for both users and developers, and is included by default in most, if not all, Linux distributions. Created in 2009, it has since released numerous versions. As an open-source project, it is available on GitHub. However, as of the time of writing this article, attempting […]
Tech Support
Documentation
Login
Contact Us
