Apache Tomcat CVE-2022-25762 Advisory

Context On May 12, 2022, Apache released an advisory regarding a high severity vulnerability in Apache Tomcat. The vulnerability, designated CVE-2022-25762, affects Tomcat versions 9.0.0.M1 to 9.0.2o and 8.5.0 to 8.5.75. Apache advises users to upgrade to 9.0.21 or later or 8.5.76 or later to mitigate the vulnerability. A May 16, 2022 advisory from CISA…

Read More

Types of Cloud Security Solutions

Moving operations to the cloud allows companies to cost-effectively do business with a global customer base and workforce. However, cloud computing comes with additional security challenges that require tools to manage effectively. These tools offer visibility across a variety of cloud environments and help automate detection of vulnerabilities and configuration/compliance risks. Here we break down…

Read More

6 Cloud Security Best Practices for Vulnerability Management

Vulnerability management is the process of identifying, investigating, correcting, and reporting on security threats in our systems and software. As organizations transition away from strictly on-premises environments in favor of public and hybrid clouds, security professionals have been forced to reevaluate traditional vulnerability management practices that are no longer sufficient in the fast-paced cloud environment….

Read More

4 Types of Cloud Security Service Models

Cloud service providers (CSP), such as AWS, Microsoft Azure, or Google, allow companies to take advantage of the benefits of cloud computing without the strain of managing the required infrastructure. The level of responsibility that you as the consumer of these services retain versus the responsibility taken on by the CSP is determined by the…

Read More

Connecticut Becomes Fifth U.S. State to Pass Data Privacy Law

Context On May 4, 2022, Connecticut became the fifth U.S. state to pass a set of data privacy rules and regulations aimed at protecting the privacy of its constituents. The bill, S.B. No. 6: Act Concerning Personal Data Privacy and Online Monitoring, joins similar legislative pieces passed in California, Virginia, Colorado and Utah. This rising trend…

Read More