Blog | Anitian

Products
- SecureCloud For Compliance Automation
  
  Get audit-ready with the fastest path to FedRAMP compliance.
  
  LEARN MORE
  
  FedRAMP Technical Readiness Assessment
  
  Assess your current environment for FedRAMP readiness.
  
  LEARN MORE
  5SecureCloud for Compliance Automation
  5SecureCloud for Enterprise Cloud Security
Solutions
- By Cloud Provider
  
  Anitian on AWS
  Anitian on Microsoft Azure
  
  By Use Case & Industry
  
  5Business Growth
  5Government
  5SaaS
  5Retail
  
  By Compliance
  
  5FedRAMP
  5PCI DSS
  5ISO 27001
  
  Services
  
  5SecOps
  
  Considering consulting? Think again.
  
  Some organizations claim to offer compliance automation, but here are the real facts.
  
  GET THE FACTS
Company
- About
  Leadership
  Careers
  
  Press & News
  Awards
  Contact
  
  Careers at Anitian
  
  Join the team.
  
  APPLY NOW
Learn
- Resource Library
  Events
  Blog
  Solution Briefs
  eBooks
  Reports
  
  Webinars
  Case Studies
  Press & News
  Podcast
  The Real Facts
  
  Anitian Recognized in Gartner Hype Cycle
  
  Get exclusive access to the full report.
  
  GET THE REPORT
Partners
- 5Partner Ecosystem
  5Partner Program
  
  Technology Ecosystem Partners:
  
  Partner with Anitian
  
  Our global network of authorized Partners is at the heart of what makes Anitian successful.
  
  BECOME A PARTNER
Careers
GET A DEMO
Contact Us

Latest Posts

The Post-COVID Cloud Boom Report: A Deep Dive

The Post-COVID Cloud Boom Report: A Deep Dive

Featured Posts

No Results Found

The page you requested could not be found. Try refining your search, or use the navigation above to locate the post.

Cybersecurity Executive Order: Can automation fix the nation’s misconfiguration problem?

Cybersecurity Executive Order: Can automation fix the nation’s misconfiguration problem?

May 14, 2021

President Joe Biden signed and released an Executive Order (EO) from the White House on May 12th, addressing his plan to improve the nation’s cybersecurity and protect federal government networks. This order comes on the heels of the Colonial Pipeline Ransomware...

20 Statistics That Today’s DevSecOps Teams Should Know

20 Statistics That Today’s DevSecOps Teams Should Know

May 13, 2021

In a recent report, leading analyst firm Gartner predicted that the Public Cloud Services Market will continue to gain steam, reaching $397.4B by 2022. This is surely due, in part, to the fact that an overwhelming number of enterprise CEOs are making digital business...

Security Confessions of a Venture Capitalist

Security Confessions of a Venture Capitalist

Apr 21, 2021

In this must-listen episode of the Security on Cloud Podcast, we sat down with veteran cybersecurity venture capitalist, Sean Cunningham, Managing Director at ForgePoint Capital. With over 25+ years of cybersecurity venture capital (VC) investment experience — as well...

As Enterprises Race to Embrace Cloud Security and Compliance Automation, Anitian Announces Explosive Growth and Customer Momentum

As Enterprises Race to Embrace Cloud Security and Compliance Automation, Anitian Announces Explosive Growth and Customer Momentum

Mar 25, 2021

Growth fuels expansion to new markets, new products, new partners, and expanded leadership team. PORTLAND, Oregon — March 25, 2021 — Anitian, the leading cloud application security and compliance automation provider, announced today record year-over-year customer...

“Trust” — the Biggest Security Vulnerability in the Cloud

“Trust” — the Biggest Security Vulnerability in the Cloud

Mar 9, 2021

In this episode of the Security on Cloud Podcast, we're joined by the well-known white-hat hacker, Robert Hansen, of Bit Discovery. As a 26-year veteran in the computer security industry and known by insiders as “RSnake”, Robert shares how he became a security...

All Posts

PCI DSS 3.2 Multi-Factor Authentication Clash

Andrew Plato October 27, 2016

PCI DSS 3.2 Multi-Factor Authentication Clash

Multi-factor authentication (MFA) is a tried and true technology that rarely incites debate. How then did MFA became a hotly debated ...
Read More

More Hacking SQL Servers Without a Password - Anitian

Andrew Plato September 20, 2016

More Hacking SQL Servers Without a Password

We return to hacking SQL servers, with a whole new script that automates the attack ...
Read More

CD114-LL-Cybersecurity

Andrew Plato August 2, 2016

Future SOC

People passively monitoring alerts is not an effective SOC strategy. We need a Future SOC ...
Read More

The Technology You Own, Ends Up Owning You - Anitian

Andrew Plato July 5, 2016

The Technology You Own, Ends Up Owning You

Has information security become a sham? Maybe it is not another security technology we need. Maybe the technology we own, now ...
Read More

Andrew Plato May 5, 2016

Nuke the Checkbox Audit from Orbit, or Alienate the Millennials

Millennials have a high affinity for authentic leadership. That means your information security program must also be authentic. Purging the practice ...
Read More

Hacking Nagios: The Importance of System Hardening - Anitian

Andrew Plato April 21, 2016

Hacking Nagios: The Importance of System Hardening

A recent penetration test uncovered some serious vulnerabilities in a Nagios deployment and served as a reminder that system hardening is ...
Read More

Preview of the PCI DSS v3.2

Andrew Plato March 7, 2016

Preview of the PCI DSS v3.2

Anitian has a preview of the upcoming changes to the PCI DSS 3.2 ...
Read More

Hacking Microsoft SQL Server Without a Password

Andrew Plato February 5, 2016

Hacking Microsoft SQL Server Without a Password

Using a Man in the Middle (MITM) style attack and some packet manipulation, you can hack any Microsoft SQL Server and ...
Read More

Digging Deeper - Striking Gold in Penetration Testing - Anitian

Andrew Plato January 6, 2016

Digging Deeper – Striking Gold in Penetration Testing

Sometimes automated scanners cannot detect subtle vulnerabilities embedded deep inside scripts. It pays to dig a little deeper to strike vulnerability ...
Read More

techniques-feb-20151

Andrew Plato October 20, 2015

Illusions of Information Security – The Struggle for Truth

In October 1995, I finally found my calling. What I found was SQL Injection, perhaps the most prevalent web site hack ...
Read More

Anatomy of a Hack: Cross-Site Request Forgery (CSRF) - Anitian

Andrew Plato August 20, 2015

Anatomy of a Hack: Cross-Site Request Forgery (CSRF)

Cross-Site Request Forgery is a common vulnerability that many web application scanners can miss. In this real-world example, Anitian demonstrates how ...
Read More

allaboutme

Andrew Plato July 22, 2015

Enough with the Stunt Hacking

The time has come for the information security profession to reject stunt hacking such as the sensational car hacks that Charlie ...
Read More

AWS_LOGO_RGB_300px

Andrew Plato June 22, 2015

PCI Compliance for the AWS Cloud

Anitian’s Workbook for PCI Compliance in the AWS Cloud takes the guesswork out of making your AWS infrastructure PCI DSS compliant ...
Read More

thinker

Andrew Plato June 9, 2015

The Ethical Conundrums of Vulnerability Research

The boundary between right and wrong resists permanence in cybersecurity. The case of Chris Roberts and his alleged flight systems hacking ...
Read More

The Battle for Endpoint Security Begins (Again)

Andrew Plato March 18, 2015

The Battle for Endpoint Security Begins (Again)

Anti-virus may be dead, but endpoint security analytics is young, healthy, and about to pop up on your task bar in ...
Read More

weak-link

Andrew Plato March 9, 2015

PCI Set to Ban SSL Protocol

The PCI DSS is ready to ban SSL and TLS 1.0 and 1.1 in response to vulnerability disclosures ...
Read More

‹
1
…
5
6
7
8
9
10
›