Blog - Technology Performance Pulse

Security operations centers: How state governments can enhance cybersecurity posture

Dynatrace

APRIL 3, 2024

What is a security operations center? Furthermore, with a single source of truth for root cause analysis, teams can quickly get on the same page about what needs to be done and who’s responsible for it. On December 9, 2021, the first indicators of the Log4j vulnerability (Log4Shell) began reverberating worldwide.

Government

Government Social Media Metrics Infrastructure

How AI and observability help to safeguard government networks from new threats

Dynatrace

MARCH 27, 2024

Rules-based security in an era of rapid change A fundamental limitation is at the heart of most traditional security solutions: Many are rules-based, making them well-suited for defending against anticipated risks, but not new and unexpected ones. Simply put: Organizations don’t know what they don’t know.

Government

Government Network Artificial Intelligence Cloud

What is Log4Shell? The Log4Shell vulnerability explained (and what to do about it)

Dynatrace

DECEMBER 16, 2021

Dynatrace news. Since December 10, days after a critical vulnerability known as Log4Shell was discovered in servers supporting the game Minecraft, millions of exploit attempts have been made of the Log4j 2 Java library, according to one team tracking the impact, with potential threat to millions more applications and devices across the globe.

Internet

Internet Internet Games Java

InfoSec 2022 guide: How DevSecOps practices drive organizational resilience

Dynatrace

JUNE 13, 2022

Dynatrace news. But with this speed, agility, and innovation come new challenges. Open source code, for example, has generated new threat vectors for attackers to exploit. A case in point is Log4Shell, which emerged in late 2021 and exposed open source libraries to exploitation.

Open Source

Open Source DevOps Java Innovation

Black Hat 2023: Pairing causal AI and generative AI for cybersecurity threats

Dynatrace

AUGUST 7, 2023

This combined approach provides reliable answers for two key purposes,” wrote Dynatrace CTO Bernd Greifeneder in a May 2023 blog post. What is vulnerability management? And why runtime vulnerability detection makes the difference – blog Vulnerability management is an essential part of securing IT operations.

DevOps

DevOps Analytics Best Practices Java

RSA 2022 guide: DevSecOps transformation with runtime vulnerability management

Dynatrace

MAY 23, 2022

Dynatrace news. Software intelligence as code enables tailored observability, AIOps, and application security at scale – blog. AIOps capabilities drive intelligent cloud observability – blog. AIOps strategy central to proactive multicloud managemen t – blog. At RSA 2022 , the theme is Transform.

Strategy

Strategy Innovation Cloud Serverless

Log4Shell vulnerability discovery and mitigation require automatic and intelligent observability

Dynatrace

DECEMBER 23, 2021

Dynatrace news. Since the Log4j vulnerability CVE-2021-44228 —or Log4Shell—emerged in early December, security teams have faced great pressure to identify and remediate it. Log4Shell is a software vulnerability in Apache Log4j 2 , a popular Java library for logging error messages in applications. At what scale?

Internet

Internet Internet Energy Open Source

RSA Guide 2023: Cloud application security remains core challenge for organizations

Dynatrace

APRIL 11, 2023

Consider Log4Shell , a zero-day vulnerability that emerged in 2021, affecting millions of applications. Log4Shell required many organizations to take devices and applications offline to prevent malicious attackers from gaining access to IT systems and sensitive data.  Threats to applications can be costly and disruptive.

Cloud

Cloud DevOps Open Source Retail

Advance DevSecOps practices with a vulnerability management strategy

Dynatrace

FEBRUARY 1, 2022

Dynatrace news. In the Advancing DevOps and DevSecOps track, sessions aim to help security pros, developers, and engineers as they brace for new threats that are costly and time-consuming to address. The requirements for vulnerability management have evolved, and Log4Shell has crystallized that,” says Gandhi.

Strategy

Strategy Games DevOps Open Source

Black Hat 2022 highlights zero-day attacks as key theme

Dynatrace

AUGUST 2, 2022

Dynatrace news. Cyberattacks such as the Log4Shell vulnerability , which emerged in late 2021, demonstrated the importance of having a runtime application vulnerability strategy. Advanced observability tools can enable organizations to identify and address dangerous zero-day vulnerabilities, such as Log4Shell. – blog.

DevOps

DevOps Strategy Open Source Java

What the SEC cybersecurity disclosure mandate means for application security

Dynatrace

DECEMBER 5, 2023

This blog provides explains the SEC disclosure and what it means for application security, best practices, and how your organization can prepare for the new requirements. What is the new SEC cybersecurity mandate about and what are the requirements? Regulatory risks are also increasing.

Best Practices

Best Practices Government C++ Education

Log4Shell highlights need for secure digital transformation with observability, vulnerability management

Dynatrace

FEBRUARY 8, 2022

Dynatrace news. In December 2021, a security vulnerability known as Log4Shell emerged with force. In the ensuing hours and days, Log4Shell became a showstopper for many organizations, requiring them to take devices and applications offline to prevent malicious attackers from gaining access to networks and sensitive data.

Healthcare

Healthcare Transportation Innovation Games

Dynatrace Application Security detects and blocks attacks automatically in real-time

Dynatrace

FEBRUARY 10, 2022

Dynatrace news. Without real-time attack protection in place, the only possible next step is forensics after the attack to investigate what happened. Without real-time attack protection in place, the only possible next step is forensics after the attack to investigate what happened. Unfortunately, they also introduce risk.

Traffic

Traffic Benchmarking Innovation Java

Log4j 2 Vulnerability: Identifying and Minimizing Production Risk

Dynatrace

DECEMBER 12, 2021

Dynatrace news. Log4Shell, a zero-day exploit affecting the popular Apache package was made public on December 9, 2021. In summary, the Log4Shell exploit allows an attacker to instruct the vulnerable system to download, and subsequently execute, a malicious command. The National Vulnerability Database describes the exploit here.

Java

Java Internet Internet Database

Log4Shell vulnerability: Identifying and minimizing production risk

Dynatrace

DECEMBER 12, 2021

Dynatrace news. Log4Shell, a zero-day vulnerability affecting the popular Apache package was made public on December 9, 2021. In summary, the Log4Shell vulnerability allows an attacker to instruct the vulnerable system to download, and subsequently execute, a malicious command. Sensitive Data Access. Application List.

Java

Java Internet Internet Database

Why software supply chain attacks are increasing

Dynatrace

JULY 29, 2022

Dynatrace news. One such software supply chain attack reared its head in late 2021, with the Log4Shell vulnerability , which affected millions of live applications using Java libraries. What is a software supply chain attack? Software supply chain attacks emerge in full force.

Software

Software Software Open Source DevOps

DevOps observability: A guide for DevOps and DevSecOps teams

Dynatrace

JANUARY 18, 2023

What is DevOps? Unpacking the purpose and importance of an IT cultural revolution – blog. Unpacking the purpose and importance of an IT cultural revolution – blog. Gene Kim offers an expert view on DevOps and explains how to maximize success – blog. DevOps: The differences—and similarities – blog. – blog.

DevOps

DevOps Best Practices Innovation Strategy

Protect your organization against zero-day vulnerabilities

Dynatrace

AUGUST 3, 2022

Dynatrace news. What is a zero-day vulnerability? What are traditional methods to detect zero-day attacks? In today’s complex, data-driven world, many security vulnerabilities and attacks can jeopardize an organization’s data. Perhaps the most difficult, however, are zero-day vulnerabilities.

Java

Java Traffic Benchmarking Strategy

Perform 2023 Guide: Organizations mine efficiencies with automation, causal AI

Dynatrace

FEBRUARY 10, 2023

In what follows, we explore some key cloud observability trends in 2023, such as workflow automation and exploratory analytics. Perform 2023 news At Perform 2023 in Las Vegas, the headliner theme is IT automation. We’ll post news here as it happens! What is a data lakehouse?

Efficiency

Efficiency Performance Analytics DevOps

What is vulnerability management? And why runtime vulnerability detection makes the difference

Dynatrace

AUGUST 18, 2022

Dynatrace news. Vulnerability management is critical for digitally transforming organizations, especially in wake of Log4Shell. What is a security vulnerability? What is vulnerability management? Vulnerability management is an essential part of securing IT operations.

Traffic

Traffic Java Network DevOps

How runtime security helps DevSecOps teams eliminate security blind spots

Dynatrace

MARCH 28, 2022

Dynatrace news. In December 2021, the emergence of the Log4Shell zero-day vulnerability demonstrated the potential impact of vulnerabilities in runtime. “This is the core of what all security solutions should provide,” he says. What is the impact? But what does alert prioritization look like in practice?

Strategy

Strategy Cloud Speed Network

What is RASP? Why runtime application self-protection is important, and how to do it right

Dynatrace

JUNE 16, 2022

Dynatrace news. Currently, RASP is undergoing a significant evolution with the rise in web attacks and new application deployment models. Microsoft, for example, reported that only a few days after the Log4Shell vulnerability had been discovered, exploiters launched more than 1.8 What is RASP? million attacks.

Tuning

Tuning Cloud Open Source Network

The top eight DevSecOps trends in 2022

Dynatrace

FEBRUARY 23, 2022

Dynatrace news. In December of 2021, for example, Log4Shell highlighted the importance of organizations to monitor code in development and production but also the code of their partners and customers. Log4Shell enables an attacker to use remote code execution to engage with software that uses the Java logging library Log4j versions 2.0

Serverless

Serverless Infrastructure Innovation DevOps

Dynatrace Perform 2022 delivers software intelligence as code, real-time attack blocking

Dynatrace

MARCH 8, 2022

Dynatrace news. Dynatrace has also enhanced its Application Security Module to provide real-time, automatic attack detection and blocking to protect against injection attacks that exploit critical vulnerabilities, such as Log4Shell. At Dynatrace Perform 2022 in February, the theme was “Empowering the game changers.”. Learn more!

Code

Code Software Software Serverless

The anatomy of the Spring4Shell vulnerability and how to prevent its effects—and those of similar vulnerabilities

Dynatrace

APRIL 14, 2022

Dynatrace news. What is the Spring Framework? The Spring4Shell vulnerability affects all these components, as we discuss in what follows. Spring4Shell is a critical vulnerability in the Spring Framework , which emerged in late March 2022. Further, the report lists Tomcat as the most popular Java application server.

Java

Java Servers Code Open Source

What is log analytics? How a modern observability approach provides critical business insight

Dynatrace

JULY 29, 2022

Dynatrace news. What is log analytics? While an error message or application alert will signal that something has gone wrong, it often requires an investigation to identify what exactly happened, in which part of the system, and how so teams can take action. What are the use cases for log analytics? Better-quality code.

Analytics

Analytics Storage Retail DevOps

What is log analytics? How a modern observability approach provides critical business insight

Dynatrace

JULY 29, 2022

Dynatrace news. What is log analytics? While an error message or application alert will signal that something has gone wrong, it often requires an investigation to identify what exactly happened, in which part of the system, and how so teams can take action. What are the use cases for log analytics? Better-quality code.

Analytics

Analytics Storage Retail DevOps

Black Friday traffic exposes gaps in observability strategies

Dynatrace

SEPTEMBER 2, 2022

Dynatrace news. What’s the problem with Black Friday traffic? Organizations need to prepare for both expected and unexpected demand, not only for the services that their customers and users rely on today but for the services being developed for tomorrow,” he wrote in a blog on Black Friday traffic.

Traffic

Traffic Strategy Retail Ecommerce

Dynatrace Perform 2022: Themes to watch at Dynatrace’s annual conference

Dynatrace

JANUARY 19, 2022

Dynatrace news. In what follows, we survey some of the capabilities of a modern observability platform and themes we will highlight at Dynatrace Perform 2022. Observability vs. monitoring: What’s the difference? – Blog. Modern approaches to observability and monitoring for multicloud environments – Blog.

Artificial Intelligence

Artificial Intelligence DevOps Performance Games

Site reliability engineering: Six SRE trends to unleash DevOps innovation

Dynatrace

JUNE 2, 2022

Dynatrace news. Enabling teams to easily integrate new automation capabilities with existing tools and workflows reduces manual effort and improves engineering practices. They understand what it takes to build systems that can scale from 10 users to 1,000, or from 1 million to 10 million users.

DevOps

DevOps Innovation Engineering Benchmarking

Azure Well-Architected Framework: What it is and how to tame it with AI and automation

Dynatrace

APRIL 21, 2022

Dynatrace news. In this blog, we’ll review the five pillars of the Azure Well-Architected Framework and illustrate how organizations can use Dynatrace to ensure their applications are architected correctly. What is the Azure Well-Architected Framework? Understanding resource utilization for cost management. Reliability.

Azure

Azure Monitoring Virtualization Metrics

Open Source Software Security: Is Open Source Software Safe?

Percona

APRIL 26, 2023

But it’s worth examining what we mean by “safe,” contrasting open source software with proprietary software, and discussing when you should use caution. Finally, let’s clarify what we’re discussing with the phrase “open source software.” ” Broadly speaking, the answer is a resounding yes.

Open Source

Open Source Software Software Social Media

Technology Performance Pulse

Security operations centers: How state governments can enhance cybersecurity posture

How AI and observability help to safeguard government networks from new threats

Trending Sources

What is Log4Shell? The Log4Shell vulnerability explained (and what to do about it)

InfoSec 2022 guide: How DevSecOps practices drive organizational resilience

Black Hat 2023: Pairing causal AI and generative AI for cybersecurity threats

RSA 2022 guide: DevSecOps transformation with runtime vulnerability management

Log4Shell vulnerability discovery and mitigation require automatic and intelligent observability

RSA Guide 2023: Cloud application security remains core challenge for organizations

Advance DevSecOps practices with a vulnerability management strategy

Black Hat 2022 highlights zero-day attacks as key theme

What the SEC cybersecurity disclosure mandate means for application security

Log4Shell highlights need for secure digital transformation with observability, vulnerability management

Dynatrace Application Security detects and blocks attacks automatically in real-time

Log4j 2 Vulnerability: Identifying and Minimizing Production Risk

Log4Shell vulnerability: Identifying and minimizing production risk

Why software supply chain attacks are increasing

DevOps observability: A guide for DevOps and DevSecOps teams

Protect your organization against zero-day vulnerabilities

Perform 2023 Guide: Organizations mine efficiencies with automation, causal AI

What is vulnerability management? And why runtime vulnerability detection makes the difference

How runtime security helps DevSecOps teams eliminate security blind spots

What is RASP? Why runtime application self-protection is important, and how to do it right

The top eight DevSecOps trends in 2022

Dynatrace Perform 2022 delivers software intelligence as code, real-time attack blocking

The anatomy of the Spring4Shell vulnerability and how to prevent its effects—and those of similar vulnerabilities

What is log analytics? How a modern observability approach provides critical business insight

What is log analytics? How a modern observability approach provides critical business insight

Black Friday traffic exposes gaps in observability strategies

Dynatrace Perform 2022: Themes to watch at Dynatrace’s annual conference

Site reliability engineering: Six SRE trends to unleash DevOps innovation

Azure Well-Architected Framework: What it is and how to tame it with AI and automation

Open Source Software Security: Is Open Source Software Safe?

Stay Connected