As a young girl, Angela Chuang accompanied her father to the bookstore where they would browse books on software engineering together. He started his own business in software engineering and served as an inspiration to her. Later, she followed in his footsteps and became a software engineer herself. “I admire his self-motivation and diligence, which make him a role model in my … [Read more...] about Women in tech: How Angela Chuang’s childhood sparked her dream of becoming a software engineer
software
Critical Security Flaws Exposed in Nagios XI Network Monitoring Software
Sep 20, 2023THNNetwork Security / Vulnerability Multiple security flaws have been disclosed in the Nagios XI network monitoring software that could result in privilege escalation and information disclosure. The four security vulnerabilities, tracked from CVE-2023-40931 through CVE-2023-40934, impact Nagios XI versions 5.11.1 and lower. Following responsible disclosure on … [Read more...] about Critical Security Flaws Exposed in Nagios XI Network Monitoring Software
Comparing Six Top Observability Software Platforms
When it comes to observability, your organization will have no shortage of options for tools and platforms. Between open source software and proprietary vendors, you should be able to find the right tools to fit your use case, budget and IT infrastructure.Observability should be cost-efficient, easy to implement and customers should be provided with the best support possible. … [Read more...] about Comparing Six Top Observability Software Platforms
Women in Tech: Stephanie Harris explains how she switched careers from musician to software engineer
Stephanie Harris has always had an interest in computers, but her initial career path started out in a different direction. Now, she’s a Senior Software Engineer at Elastic. Since she was young, Stephanie says she’s always had the ability to take confusing concepts and make them “make sense,” a skill that helped her on her winding path which eventually led her to Elastic. While … [Read more...] about Women in Tech: Stephanie Harris explains how she switched careers from musician to software engineer
Another Critical Unauthenticated SQLi Flaw Discovered in MOVEit Transfer Software
Jul 07, 2023Swati KhandelwalVulnerability / Cyber Threat Progress Software has announced the discovery and patching of a critical SQL injection vulnerability in MOVEit Transfer, popular software used for secure file transfer. In addition, Progress Software has patched two other high-severity vulnerabilities. The identified SQL injection vulnerability, tagged as … [Read more...] about Another Critical Unauthenticated SQLi Flaw Discovered in MOVEit Transfer Software
The power of effective log management in software development and operations
,The rapid software development process that exists today requires an expanding and complex infrastructure and application components, and the job of operations and development teams is ever growing and multifaceted. Observability, which helps manage and analyze telemetry data, is the key to ensuring the performance and reliability of your applications and infrastructure. In … [Read more...] about The power of effective log management in software development and operations
Iranian Hackers Using SimpleHelp Remote Support Software for Persistent Access
Apr 18, 2023Ravie LakshmananCyber Threat / Malware The Iranian threat actor known as MuddyWater is continuing its time-tested tradition of relying on legitimate remote administration tools to commandeer targeted systems. While the nation-state group has previously employed ScreenConnect, RemoteUtilities, and Syncro, a new analysis from Group-IB has revealed the adversary's … [Read more...] about Iranian Hackers Using SimpleHelp Remote Support Software for Persistent Access
Atlassian’s Jira Software Found Vulnerable to Critical Authentication Vulnerability
Feb 03, 2023Ravie LakshmananCloud Security / Vulnerability Atlassian has released fixes to resolve a critical security flaw in Jira Service Management Server and Data Center that could be abused by an attacker to pass off as another user and gain unauthorized access to susceptible instances. The vulnerability is tracked as CVE-2023-22501 (CVSS score: 9.4) and has been … [Read more...] about Atlassian’s Jira Software Found Vulnerable to Critical Authentication Vulnerability
ISC Releases Security Patches for New BIND DNS Software Vulnerabilities
Jan 28, 2023Ravie LakshmananServer Security / DNS The Internet Systems Consortium (ISC) has released patches to address multiple security vulnerabilities in the Berkeley Internet Name Domain (BIND) 9 Domain Name System (DNS) software suite that could lead to a denial-of-service (DoS) condition. "A remote attacker could exploit these vulnerabilities to potentially cause … [Read more...] about ISC Releases Security Patches for New BIND DNS Software Vulnerabilities
Elastic joins AWS Marketplace Vendor Insights to streamline risk assessment and software procurement
Vendor Insights can help you reduce assessment lead time by allowing you to access a vendor’s validated security profile. It can lower the effort of questionnaire population via back-and-forth with vendors from months to hours.Use the Vendor Insights dashboard to reduce assessment timeVendor Insights can ease your procurement process by reducing your assessment time via a … [Read more...] about Elastic joins AWS Marketplace Vendor Insights to streamline risk assessment and software procurement