The Kubernetes Native Gateway Series (Part 1): Envoy at Scale

Gloo Edge is our Kubernetes native API gateway based on Envoy.

It provides Authentication (OAuth, JWT, API keys, JWT, …), Authorization (OPA, custom, …), Web Application Firewall (based on ModSecurity), function discovery (OpenAPI based, Lambda, …), advanced transformations, and much more.

Source de l’article sur DZONE

If You Dare To Lead, Lead With Vulnerability

Just like a tortoise hides inside its shell and a porcupine’s sharp quills leap to attention when they sense danger, we human beings also put on protective armor when we feel threatened. Risky situations, anxiety from the unknowns, and the danger of being exposed evoke the same emotional response as the fear of being chased by a predator. 

We feel vulnerable. But instead of embracing vulnerability, accepting our fears, and leading with curiosity, we put on a shield of protection. We project confidence even when we are scared, speak with surety even when we are unsure, hide our mistakes with the fear of disapproval and avoid confrontation to save ourselves from the risk of emotional exposure. 

Source de l’article sur DZONE

SysAdmin of Billion-Dollar Hacking Group Gets 10-Year Sentence

A high-level manager and systems administrator associated with the FIN7 threat actor has been sentenced to 10 years in prison, the U.S. Department of Justice announced Friday.
Fedir Hladyr, a 35-year-old Ukrainian national, is said to have played a crucial role in a criminal scheme that compromised tens of millions of debit and credit cards, in addition to aggregating the stolen information,
Source de l’article sur The Hacker News

What are the different roles within cybersecurity?

People talk about the cybersecurity job market like it’s a monolith, but there are a number of different roles within cybersecurity, depending not only on your skill level and experience but on what you like to do.
In fact, Cybercrime Magazine came up with a list of 50 cybersecurity job titles, while CyberSN, a recruiting organization, came up with its own list of 45 cybersecurity job categories
Source de l’article sur The Hacker News

Wix Vs WordPress: 3rd Round Knockout

Over the last fortnight one site builder has gone toe-to-toe with another, as Wix launched a marketing campaign aimed at attracting WordPress users, and instead attracted universal ire.

First, Wix sent out expensive headphones as gifts to key WordPress “influencers” in an attempt to lure them to the platform. Second, they produced a series of adverts that instead of promoting their own product, tried to imply that WordPress is so bad you’ll need mental health counselling to cope with it; it’s been widely frowned upon, but am I alone in thinking they’re not a million miles away from Apple’s anti-Windows adverts? No, I’m not.

Then, Wix made an attempt to go viral with an uncomfortable video in which a character portraying “WordPress” releases a “secret” message warning the community of “fake news” supposedly due to be released by Wix. The language and the styling is clear: WordPress is unhip daddio.

Unlike WordPress, Wix is a publicly owned company, it has an obligation to its shareholders to maximize its revenue. Had Wix targeted WordPress’ many failings, that would have been fair game. Had they gone after Shopify, or Webflow, or Squarespace, or one of the many other site builders on the market no one would have blinked an eye. Wix’s error wasn’t going after WordPress, or even the tactics used to do so, Wix’s mistake was in attacking the very community it was attempting to court.

I’m not a big fan of WordPress. I’ve built around a dozen sites in it over the years and we’ve never got along, WordPress and I. But I am a big fan of the ethos of WordPress; who doesn’t love free, open source software, built by volunteers?

The holy grail of marketing is transforming customers into evangelists — individuals who will bare their chests, paint their face with woad, and charge headlong onto social media at the merest hint of a perceived slight. You can’t buy them. It’s a loyalty that has to be cultivated over years, and requires more give than take. WordPress has those evangelists, people who see their careers in web design as intertwined with the CMS. No amount of free headphones is going to convert them to a closed system like Wix.

The irony is that Wix’s approach stemmed from the WordPress community itself. If it is going to celebrate “powering 40% of the Web” then it has to expect to make itself a target. If you’re an antelope, you don’t douse yourself in bbq sauce and strut around the waterhole where the lions like to hang out.

If the row rumbles on, it will eventually end in an apology and a promise from Wix to “do better.” But the truth is, all Wix did was confuse a community of people trying to build websites, with a competing business.

This time next year, Wix will still be recovering from the damage to its reputation, and WordPress will be telling us it powers 110% of the Web.

Source

The post Wix Vs WordPress: 3rd Round Knockout first appeared on Webdesigner Depot.


Source de l’article sur Webdesignerdepot

Cybersécurité : les rançongiciels sont la première cause de recherche d’assistance en 2020

La plateforme gouvernementale d’aide aux particuliers et petites entreprises cybermalveillance.gouv.fr vient de dévoiler son rapport d’activité 2020.

The post Cybersécurité : les rançongiciels sont la première cause de recherche d’assistance en 2020 first appeared on UnderNews.
Source de l’article sur UNDERNEWS

Joe Biden annonce des sanctions à l’encontre de la Russie

Suite à l’annonce des prochaines sanctions de Joe Biden à l’encontre de la Russie en raison de leur ingérence dans les élections américaines et leur implication dans la cyberattaque ayant touché SolarWinds et de nombreuses entreprises et administrations publiques, voici les commentaires de Chris Hallenbeck, Regional CISO, Americas chez Tanium.

The post Joe Biden annonce des sanctions à l’encontre de la Russie first appeared on UnderNews.
Source de l’article sur UNDERNEWS

HackBoss, nouvelle menace pour les cryptomonnaies

Alors que la plateforme d’échange de cryptomonnaies Coinbase fait une entrée remarquée au NASDAQ, les chercheurs du Threat Labs d’Avast ont récemment identifié une nouvelle menace pour les cryptomonnaies.

The post HackBoss, nouvelle menace pour les cryptomonnaies first appeared on UnderNews.
Source de l’article sur UNDERNEWS

Severe Bugs Reported in EtherNet/IP Stack for Industrial Systems

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday issued an advisory warning of multiple vulnerabilities in the OpENer EtherNet/IP stack that could expose industrial systems to denial-of-service (DoS) attacks, data leaks, and remote code execution.
All OpENer commits and versions prior to February 10, 2021, are affected, although there are no known public exploits that
Source de l’article sur The Hacker News

How To Run Test On macOS Using Selenium Safari Driver

We all know that Google Chrome is the most popular browser in the world. But do you know, with 17.24% of the overall browser market share, Safari is the second most popular one?

The reason behind Safari’s strong presence is that it is the default web browser for all Apple devices. And we know how much developers and coders love macOS, making it absolutely necessary to ensure that our websites’ are tested and optimized for all Safari versions.

Source de l’article sur DZONE