by Scott Muniz | May 26, 2022 | Security, Technology
This article is contributed. See the original author and article here.
CISA and the Department of Defense (DoD) have released their 5G Security Evaluation Process Investigation Study for federal agencies. The new features, capabilities, and services offered by fifth-generation (5G) cellular network technology can transform mission and business operations; and federal agencies will eventually be applying different 5G usage scenarios: low-, mid-, and high-band spectrum.
The study provides an overview of the proposed 5G Security Evaluation Process and applies the process to a private 5G network use case to demonstrate considerations for each step within the overarching process. The study is a joint effort among CISA, the Department of Homeland Security’s Science and Technology Directorate, and DoD’s Under Secretary of Defense for Research and Engineering.
The proposed process detailed in the study can support government agency activities during the Risk Management Framework system-level “Prepare” step for 5G-enabled systems; and federal program and project managers should use the study’s repeatable methodology in their required evaluations. CISA encourages federal program and project managers involved in 5G implementation to review the blog post by CISA Executive Assistant Director Eric Goldstein, CISA, DHS S&T, DOD Introduce Results of an Assessment into the 5G Security Evaluation Process, which links to the study.
by Contributed | May 25, 2022 | Technology
This article is contributed. See the original author and article here.
What is Azure Static Web Apps or SWA (Static Web Apps)
Azure Static Web Apps is a service that’s perfect for your full stack as well as static files projects. Yes, you heard that correctly. Regardless if you are dealing with:
- A static resume site
- SPA application
- Static site generator like Gatsby etc
Azure Static Web Apps is there for you and enables you to deploy your files to Azure.
how does that work?
When you create an Azure resource, it connects your GitHub repo to Azure via workflow file in yaml. This ensures that all your future work can be pushed to Azure with nothing but Git and GitHub.
https://azure.microsoft.com/en-us/services/app-service/static/
Sounds like it’s worth trying? If, so have a look at these resources
What is Azure Static Web Apps CLI?
It’s a CLI you run from your console. With it, you can do a lot of things like the below:
- Work on your JAMstack app locally
- Built-in framework detection
- Serverless support
- Authentication & Authorization
- Login to Azure
- Deploy & Ship from the CLI
- New documentation site
Check it out, how it can accelerate your workflow building SWA apps :)
https://github.com/Azure/static-web-apps-cli
by Scott Muniz | May 25, 2022 | Security, Technology
This article is contributed. See the original author and article here.
Google has released Chrome version 102.0.5005.61 for Windows, Mac, and Linux. This version addresses vulnerabilities that an attacker could exploit to take control of an affected system.
CISA encourages users and administrators to review the Chrome Release Note and apply the necessary update.
by Scott Muniz | May 25, 2022 | Security, Technology
This article is contributed. See the original author and article here.
CISA has added 34 new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. These types of vulnerabilities are a frequent attack vector for malicious cyber actors and pose significant risk to the federal enterprise. Note: to view the newly added vulnerabilities in the catalog, click on the arrow on the of the “Date Added to Catalog” column, which will sort by descending dates.
Binding Operational Directive (BOD) 22-01: Reducing the Significant Risk of Known Exploited Vulnerabilities established the Known Exploited Vulnerabilities Catalog as a living list of known CVEs that carry significant risk to the federal enterprise. BOD 22-01 requires FCEB agencies to remediate identified vulnerabilities by the due date to protect FCEB networks against active threats. See the BOD 22-01 Fact Sheet for more information.
Although BOD 22-01 only applies to FCEB agencies, CISA strongly urges all organizations to reduce their exposure to cyberattacks by prioritizing timely remediation of Catalog vulnerabilities as part of their vulnerability management practice. CISA will continue to add vulnerabilities to the Catalog that meet the meet the specified criteria.
by Contributed | May 24, 2022 | Technology
This article is contributed. See the original author and article here.
Azure Event Hubs enables you to stream millions of events per second from any source using Kafka, AMQP or HTTPS protocols. Using Event Hubs capture feature, you can load real-time streaming data to data lakes, warehouses, and other storage services, so that they can be processed or analyzed by analytics services.
Today we are excited to announce the preview of Apache Parquet capturing support in Azure Event Hubs.
Why Apache Parquet for big data analytics?
Apache Parquet is column-oriented storage format that is designed for efficient data storage and retrieval. It’s open source and is not tied to any processing framework, data model or programming language. Parquet is ideal for storing any kind of big data and is built to support efficient compression and encoding schemes.
Capture streaming data in Parquet format using Event Hubs
Using Azure Event Hubs, no code editor for event processing, you can automatically capture streaming data in an Azure Data Lake Storage Gen2 account in Parquet format. The no code editor allows you to easily develop an Azure Stream Analytics job without writing a single line of code.
Once data is captured, any analytics service of your choice can process or analyze Parquet data.
Get Started Today
Recent Comments