Blog - Technology Performance Pulse

Security operations centers: How state governments can enhance cybersecurity posture

Dynatrace

APRIL 3, 2024

Indeed, a recent report found that 84% of technology leaders agree that multicloud complexity makes it more difficult to protect applications from security vulnerabilities and attacks. This data enables them to investigate and remediate the most vulnerable threats first, accelerating how quickly they respond to security incidents.

Government

Government Social Media Metrics Infrastructure

How AI and observability help to safeguard government networks from new threats

Dynatrace

MARCH 27, 2024

They don’t know where vulnerabilities start, what problems exist, how to resolve them, or how to prevent them from happening in the future. Responding to zero-day threats To illustrate the power of this approach, let’s flash back to December 2021 when security researchers just discovered Log4Shell.

Government

Government Network Artificial Intelligence Cloud

Black Hat 2023: Pairing causal AI and generative AI for cybersecurity threats

Dynatrace

AUGUST 7, 2023

This combined approach provides reliable answers for two key purposes,” wrote Dynatrace CTO Bernd Greifeneder in a May 2023 blog post. AI for cybersecurity Enterprises need a better solution for identifying security vulnerabilities that present the greatest risk. What is vulnerability management?

DevOps

DevOps Analytics Best Practices Java

What is Log4Shell? The Log4Shell vulnerability explained (and what to do about it)

Dynatrace

DECEMBER 16, 2021

Dynatrace news. Since December 10, days after a critical vulnerability known as Log4Shell was discovered in servers supporting the game Minecraft, millions of exploit attempts have been made of the Log4j 2 Java library, according to one team tracking the impact, with potential threat to millions more applications and devices across the globe.

Internet

Internet Internet Games Java

InfoSec 2022 guide: How DevSecOps practices drive organizational resilience

Dynatrace

JUNE 13, 2022

Dynatrace news. But with this speed, agility, and innovation come new challenges. Risks include performance problems and outages in cloud-native environments, application security vulnerabilities and poor digital experience for customers and other users. Security teams need their vulnerability management approach to be seamless.

Open Source

Open Source DevOps Java Innovation

RSA 2022 guide: DevSecOps transformation with runtime vulnerability management

Dynatrace

MAY 23, 2022

Dynatrace news. As organizations undergo DevSecOps transformation and their IT complexity proliferates, security teams need their vulnerability management approach to be seamless. As a result, while cloud architecture has enabled organizations to develop applications iteratively, it also increased exposure to vulnerabilities.

Strategy

Strategy Innovation Cloud Serverless

How Dynatrace uses Dynatrace to combat the Log4j vulnerability (Log4Shell)

Dynatrace

JANUARY 13, 2022

Dynatrace news. On December 9, 2021, the first indicators of the Log4j vulnerability (Log4Shell) began to reverberate across the world. As organizations started learning about Log4Shell from news feeds, blogs, and social media, the Dynatrace security team—and Dynatrace Application Security—kicked into action.

Social Media

Social Media Strategy Media Java

RSA 2022: Why modern observability forwards application security objectives

Dynatrace

JUNE 6, 2022

Dynatrace news. Additionally, cloud complexity has introduced security vulnerabilities that compromise sensitive customer and employee data. Consider the 2021 security vulnerability Log4Shell, which showcased pervasive application vulnerability. It also prioritizes which issues to address first.

Cloud

Cloud Code Software Software

Dynatrace Application Security detects and blocks attacks automatically in real-time

Dynatrace

FEBRUARY 10, 2022

Dynatrace news. One key element for securing applications in modern environments is vulnerability management. They are part of continuous delivery pipelines and examine code to find vulnerabilities. Let me describe this new capability with the help of an example you may have stumbled upon Log4Shell.

Traffic

Traffic Benchmarking Innovation Java

RSA Guide 2023: Cloud application security remains core challenge for organizations

Dynatrace

APRIL 11, 2023

For many IT teams, application vulnerabilities remain a key challenge. According to a recent survey of more than 16,000 respondents, nearly half (47%) worked for organizations that have a backlog of vulnerable applications. Threats Consider Log4Shell , a zero-day vulnerability that emerged in 2021, affecting millions of applications.

Cloud

Cloud DevOps Open Source Retail

Log4Shell vulnerability discovery and mitigation require automatic and intelligent observability

Dynatrace

DECEMBER 23, 2021

Dynatrace news. Since the Log4j vulnerability CVE-2021-44228 —or Log4Shell—emerged in early December, security teams have faced great pressure to identify and remediate it. Log4Shell is a software vulnerability in Apache Log4j 2 , a popular Java library for logging error messages in applications. Are we affected?

Internet

Internet Internet Energy Open Source

What the SEC cybersecurity disclosure mandate means for application security

Dynatrace

DECEMBER 5, 2023

This blog provides explains the SEC disclosure and what it means for application security, best practices, and how your organization can prepare for the new requirements. What is the new SEC cybersecurity mandate about and what are the requirements? Conduct threat hunts for critical zero-day vulnerabilities.

Best Practices

Best Practices Government C++ Education

Runtime vulnerability management is still a vexing challenge for organizations

Dynatrace

JUNE 1, 2022

Dynatrace news. Vulnerability management continues to be a key concern as organizations strive to innovate more rapidly and adopt cloud-native technologies to achieve their goals. But with cloud-based architecture comes greater complexity and new vulnerability challenges.

Artificial Intelligence

Artificial Intelligence Java Strategy Cloud

Why vulnerability management enhances your cloud application security strategy

Dynatrace

JANUARY 21, 2022

Dynatrace news. Key takeaways from this article on vulnerability management for cloud application security: Today’s cloud apps with their fast innovation cycles and frequent use of open-source libraries must address a gap for runtime vulnerability management in production environments.

Strategy

Strategy Cloud Open Source DevOps

Log4j 2 Vulnerability: Identifying and Minimizing Production Risk

Dynatrace

DECEMBER 12, 2021

Dynatrace news. Log4Shell, a zero-day exploit affecting the popular Apache package was made public on December 9, 2021. The National Vulnerability Database describes the exploit here. In summary, the Log4Shell exploit allows an attacker to instruct the vulnerable system to download, and subsequently execute, a malicious command.

Java

Java Internet Internet Database

Advance DevSecOps practices with a vulnerability management strategy

Dynatrace

FEBRUARY 1, 2022

Dynatrace news. As organizations struggle to combat vulnerabilities in their IT environments, they need real-time data on performance problems and security issues. Consider the Log4Shell vulnerability , which emerged in December 2021 and is estimated to have affected hundreds of millions of systems worldwide.

Strategy

Strategy Games DevOps Open Source

Why software supply chain attacks are increasing

Dynatrace

JULY 29, 2022

Dynatrace news. Additionally, a global study of 1,000 CIOs indicated that 82% say their organizations are vulnerable to cyberattacks targeting software supply chains. Open source vulnerabilities creeping in through the software supply chain are one key reason for this substantial increase.

Software

Software Software Open Source DevOps

Black Hat 2022 highlights zero-day attacks as key theme

Dynatrace

AUGUST 2, 2022

Dynatrace news. In a complex data-driven world, many security vulnerabilities and attacks can jeopardize an organization’s sensitive data. Malicious attackers have gotten increasingly adept at identifying vulnerabilities and launching attacks to exploit these weak points in IT systems. – blog. Read more now.

DevOps

DevOps Strategy Open Source Java

Log4Shell vulnerability: Identifying and minimizing production risk

Dynatrace

DECEMBER 12, 2021

Dynatrace news. Log4Shell, a zero-day vulnerability affecting the popular Apache package was made public on December 9, 2021. The National Vulnerability Database describes the vulnerability here. Sensitive Data Access – Do the vulnerable Java processes access critical databases or file systems in the environment?

Java

Java Internet Internet Database

Log4Shell highlights need for secure digital transformation with observability, vulnerability management

Dynatrace

FEBRUARY 8, 2022

Dynatrace news. Avisi uses Dynatrace to find vulnerabilities in production. In December 2021, a security vulnerability known as Log4Shell emerged with force. For Avisi , a software development and cloud services company in the Netherlands, its Log4Shell response was immediate and automatic.

Healthcare

Healthcare Transportation Innovation Games

Protect your organization against zero-day vulnerabilities

Dynatrace

AUGUST 3, 2022

Dynatrace news. In today’s complex, data-driven world, many security vulnerabilities and attacks can jeopardize an organization’s data. Perhaps the most difficult, however, are zero-day vulnerabilities. What is a zero-day vulnerability? Zero day is often linked with three concepts: vulnerability, exploit, and attack.

Java

Java Traffic Benchmarking Strategy

Perform 2023 Guide: Organizations mine efficiencies with automation, causal AI

Dynatrace

FEBRUARY 10, 2023

Perform 2023 news At Perform 2023 in Las Vegas, the headliner theme is IT automation. We’ll post news here as it happens! Combining data lakes and warehouses for the best of both worlds — blog While organizations often choose between data lakes and data warehouses, a data lakehouse offers the best of both.

Efficiency

Efficiency Performance Analytics DevOps

How retailers can deliver goods securely in the current state of vulnerability management

Dynatrace

AUGUST 15, 2022

Dynatrace news. Dynatrace has released a new segment of its annual global chief information security officer (CISO) survey to reveal the state of vulnerability management in the retail sector. The extent of this problem was on display in the retail industry with the discovery of Log4Shell in December 2021.

Retail

Retail Ecommerce Open Source DevOps

What is vulnerability management? And why runtime vulnerability detection makes the difference

Dynatrace

AUGUST 18, 2022

Dynatrace news. Vulnerability management is an essential part of securing IT operations. But managing the breadth of the vulnerabilities that can put your systems at risk is challenging. Vulnerability management is critical for digitally transforming organizations, especially in wake of Log4Shell.

Traffic

Traffic Java Network DevOps

What is RASP? Why runtime application self-protection is important, and how to do it right

Dynatrace

JUNE 16, 2022

Dynatrace news. Currently, RASP is undergoing a significant evolution with the rise in web attacks and new application deployment models. At the same time, open source software (OSS) libraries now account for more than 70% of most applications’ code base, increasing the risk of application vulnerabilities. million attacks.

Tuning

Tuning Cloud Open Source Network

How runtime security helps DevSecOps teams eliminate security blind spots

Dynatrace

MARCH 28, 2022

Dynatrace news. Security blind spots pose a significant threat to an effective DevSecOps strategy and leave organizations vulnerable to attack—in some cases when applications are already live. In December 2021, the emergence of the Log4Shell zero-day vulnerability demonstrated the potential impact of vulnerabilities in runtime.

Strategy

Strategy Cloud Speed Network

Observability and security must converge as the financial services sector goes cloud-first

Dynatrace

JULY 12, 2022

Dynatrace news. With AWS Summit taking place July 12 in New York City, Dynatrace will release new data from its global chief information security officer (CISO) survey, revealing the state of vulnerability management in the financial services sector. Layered financial services security strategies are not enough.

Cloud

Cloud Open Source Innovation Serverless

DevOps observability: A guide for DevOps and DevSecOps teams

Dynatrace

JANUARY 18, 2023

Unpacking the purpose and importance of an IT cultural revolution – blog. Gene Kim offers an expert view on DevOps and explains how to maximize success – blog. DevOps: The differences—and similarities – blog. – blog. Guide to event-driven SRE-inspired DevOps for leveling up your existing CI/CD strategy – blog.

DevOps

DevOps Best Practices Innovation Strategy

The top eight DevSecOps trends in 2022

Dynatrace

FEBRUARY 23, 2022

Dynatrace news. But increased speed creates a tradeoff: According to another study, nearly half of organizations consciously deploy vulnerable code because of time pressure. Mounting attacks via vulnerable third-party code. We should look for flaws: both bugs and vulnerabilities.”. and 2.14.1. Weighing MLOps vs. AIOps.

Serverless

Serverless Infrastructure Innovation DevOps

The anatomy of the Spring4Shell vulnerability and how to prevent its effects—and those of similar vulnerabilities

Dynatrace

APRIL 14, 2022

Dynatrace news. Spring4Shell is a critical vulnerability in the Spring Framework , which emerged in late March 2022. With a critical CVSS rating of 9.8 , Spring4Shell leaves affected systems vulnerable to remote code execution (RCE). The Spring4Shell vulnerability affects all these components, as we discuss in what follows.

Java

Java Servers Code Open Source

Dynatrace Perform 2022 delivers software intelligence as code, real-time attack blocking

Dynatrace

MARCH 8, 2022

Dynatrace news. Dynatrace has also enhanced its Application Security Module to provide real-time, automatic attack detection and blocking to protect against injection attacks that exploit critical vulnerabilities, such as Log4Shell. At Dynatrace Perform 2022 in February, the theme was “Empowering the game changers.”.

Code

Code Software Software Serverless

DevSecOps automation improves application security in multicloud environments

Dynatrace

AUGUST 5, 2022

Dynatrace news. This practice exposes them to vulnerabilities that can crop up anywhere in the supply chain. Finally, zero-day vulnerabilities such as Log4Shell are becoming more common. For instance, security teams often rely on vulnerability assessment (VA) tools to find application vulnerabilities.

DevOps

DevOps Cloud Best Practices Open Source

Black Friday traffic exposes gaps in observability strategies

Dynatrace

SEPTEMBER 2, 2022

Dynatrace news. Organizations need to prepare for both expected and unexpected demand, not only for the services that their customers and users rely on today but for the services being developed for tomorrow,” he wrote in a blog on Black Friday traffic. Use observability to detect runtime vulnerabilities and cyberattacks.

Traffic

Traffic Strategy Retail Ecommerce

What is log analytics? How a modern observability approach provides critical business insight

Dynatrace

JULY 29, 2022

Dynatrace news. The ability to recover and investigate event logs and metadata enables organizations to identify patterns threat actors leave when trying to exploit a vulnerability in your environment. In late 2021, for example, digital forensics was central to combating the Log4Shell vulnerability. What is log analytics?

Analytics

Analytics Storage Retail Monitoring

Dynatrace Perform 2022: Themes to watch at Dynatrace’s annual conference

Dynatrace

JANUARY 19, 2022

Dynatrace news. Observability vs. monitoring: What’s the difference? – Blog. Modern approaches to observability and monitoring for multicloud environments – Blog. Application security and vulnerability management. And why it needs a new approach – Blog. What is application security?

Artificial Intelligence

Artificial Intelligence DevOps Performance Games

What is log analytics? How a modern observability approach provides critical business insight

Dynatrace

JULY 29, 2022

Dynatrace news. The ability to recover and investigate event logs and metadata enables organizations to identify patterns threat actors leave when trying to exploit a vulnerability in your environment. In late 2021, for example, digital forensics was central to combating the Log4Shell vulnerability. What is log analytics?

Analytics

Analytics Storage Retail Monitoring

Site reliability engineering: Six SRE trends to unleash DevOps innovation

Dynatrace

JUNE 2, 2022

Dynatrace news. SREs are also making progress in extending organization-wide DevSecOps approaches to ensure organizations can restore systems quickly after discovering a vulnerability. As the Log4Shell vulnerability demonstrated when it emerged in December 2021, third-party code libraries face significant security risks.

DevOps

DevOps Innovation Engineering Benchmarking

Azure Well-Architected Framework: What it is and how to tame it with AI and automation

Dynatrace

APRIL 21, 2022

Dynatrace news. In this blog, we’ll review the five pillars of the Azure Well-Architected Framework and illustrate how organizations can use Dynatrace to ensure their applications are architected correctly. Block attacks against exposed vulnerabilities. Understanding resource utilization for cost management.

Azure

Azure Monitoring Virtualization Metrics

Open Source Software Security: Is Open Source Software Safe?

Percona

APRIL 26, 2023

But it also allows “white hat” types to examine open source projects to try to find and fix vulnerabilities before attackers find them and use them. It allows organizations to identify potential vulnerabilities, report them, and apply fixes without depending on a single vendor. Sometimes they do!

Open Source

Open Source Software Software Social Media

Security operations centers: How state governments can enhance cybersecurity posture

How AI and observability help to safeguard government networks from new threats

Trending Sources

Black Hat 2023: Pairing causal AI and generative AI for cybersecurity threats

What is Log4Shell? The Log4Shell vulnerability explained (and what to do about it)

InfoSec 2022 guide: How DevSecOps practices drive organizational resilience

RSA 2022 guide: DevSecOps transformation with runtime vulnerability management

How Dynatrace uses Dynatrace to combat the Log4j vulnerability (Log4Shell)

RSA 2022: Why modern observability forwards application security objectives

Dynatrace Application Security detects and blocks attacks automatically in real-time

RSA Guide 2023: Cloud application security remains core challenge for organizations

Log4Shell vulnerability discovery and mitigation require automatic and intelligent observability

What the SEC cybersecurity disclosure mandate means for application security

Runtime vulnerability management is still a vexing challenge for organizations

Why vulnerability management enhances your cloud application security strategy

Log4j 2 Vulnerability: Identifying and Minimizing Production Risk

Advance DevSecOps practices with a vulnerability management strategy

Why software supply chain attacks are increasing

Black Hat 2022 highlights zero-day attacks as key theme

Log4Shell vulnerability: Identifying and minimizing production risk

Log4Shell highlights need for secure digital transformation with observability, vulnerability management

Protect your organization against zero-day vulnerabilities

Perform 2023 Guide: Organizations mine efficiencies with automation, causal AI

How retailers can deliver goods securely in the current state of vulnerability management

What is vulnerability management? And why runtime vulnerability detection makes the difference

What is RASP? Why runtime application self-protection is important, and how to do it right

How runtime security helps DevSecOps teams eliminate security blind spots

Observability and security must converge as the financial services sector goes cloud-first

DevOps observability: A guide for DevOps and DevSecOps teams

The top eight DevSecOps trends in 2022

The anatomy of the Spring4Shell vulnerability and how to prevent its effects—and those of similar vulnerabilities

Dynatrace Perform 2022 delivers software intelligence as code, real-time attack blocking

DevSecOps automation improves application security in multicloud environments

Black Friday traffic exposes gaps in observability strategies

What is log analytics? How a modern observability approach provides critical business insight

Dynatrace Perform 2022: Themes to watch at Dynatrace’s annual conference

What is log analytics? How a modern observability approach provides critical business insight

Site reliability engineering: Six SRE trends to unleash DevOps innovation

Azure Well-Architected Framework: What it is and how to tame it with AI and automation

Open Source Software Security: Is Open Source Software Safe?

Stay Connected