How Hybrid Use Benefit Reduces Azure VM Costs

Aidan Finn explains how you can use volume licensing Software Assurance or Cloud Solution Provider subscriptions for Windows Server to reduce the cost of Microsoft Azure virtual machines.

The post How Hybrid Use Benefit Reduces Azure VM Costs appeared first on Petri.

Continue reading How Hybrid Use Benefit Reduces Azure VM Costs

Subresource Integrity and Upgrade-Insecure-Requests are Now Supported in Microsoft Edge

Presently sponsored by: Build scalable, reliable and secure cloud native applications with Tech Fabric

The more time that goes by and the more deeply I give it thought, the more convinced I am that the web is held together with sticky tape. No – cyber-sticky tape! Because especially when it comes to security, there are fundamental and inherent shortcomings in everything from HTTP to…

Continue reading Subresource Integrity and Upgrade-Insecure-Requests are Now Supported in Microsoft Edge

The JavaScript Supply Chain Paradox: SRI, CSP and Trust in Third Party Libraries

Presently sponsored by: Netsparker – dead accurate web application security scanning solution – Scan websites for SQL Injection, XSS & other vulnerabilities

A couple of years back as the US presidential campaign was ramping up, the Trump camp did something stupid. I know, we’re all shocked but bear with me because it’s an important part of the narrative of this post. One of their developers embedded this code in the campaign’s donation…

Continue reading The JavaScript Supply Chain Paradox: SRI, CSP and Trust in Third Party Libraries

My Blog Now Has a Content Security Policy – Here’s How I’ve Done It

Presently sponsored by: Digicert: What are the keys to securing the Internet of Things and are you prepared? Learn how PKI can secure your devices.

I’ve long been a proponent of Content Security Policies (CSPs). I’ve used them to fix mixed content warnings on this blog after Disqus made a little mistake, you’ll see one adorning Have I Been Pwned (HIBP) and I even wrote a dedicated Pluralsight course on browser security headers. I’m a…

Continue reading My Blog Now Has a Content Security Policy – Here’s How I’ve Done It

Adoption of the Public Cloud in the Financial Services Industry

Cloud computing is not a new name anymore, and its adoption is growing consistently across various industries. Public cloud is a disruptive technology, irresistible to the Financial Services Industry (FSI) due to its tremendous benefits, including agil… Continue reading Adoption of the Public Cloud in the Financial Services Industry

Locking Down Your Website Scripts with CSP, Hashes, Nonces and Report URI

Presently sponsored by: Matchlight by Terbium Labs: Know when your exact data appears on the dark web. Contact us for a demo today.

I run a workshop titled Hack Yourself First in which people usually responsible for building web apps get to try their hand at breaking them. As it turns out, breaking websites is a heap of fun (with the obvious caveats) and people really get into the exercises. The first one…

Continue reading Locking Down Your Website Scripts with CSP, Hashes, Nonces and Report URI

Cisco Warns 69 Products Impacted by KRACK

Cisco patched a critical bug in its Cloud Services Platform 2100 hardware and at the same time told customers 96 of its products are vulnerable to KRACK vulnerabilities. Continue reading Cisco Warns 69 Products Impacted by KRACK

Majority of Sites Fail Mozilla’s Comprehensive Security Review

A thorough review of the top 1 million websites reveals 93 percent fail Mozilla’s Observatory security review. Continue reading Majority of Sites Fail Mozilla’s Comprehensive Security Review

Majority of Sites Fail Mozilla’s Comprehensive Security Review

A thorough review of the top 1 million websites reveals 93 percent fail Mozilla’s Observatory security review. Continue reading Majority of Sites Fail Mozilla’s Comprehensive Security Review

StorSimple Available — Priced for Small and Medium Enterprises

Learn about how StorSimple provides affordable, cloud-scale storage to SMEs.

The post StorSimple Available — Priced for Small and Medium Enterprises appeared first on Petri.

Continue reading StorSimple Available — Priced for Small and Medium Enterprises