Latio Pulse

Home
Market Overviews
Zero Days
Vendor Deep Dives
Latio List
Youtube
Latio Home
How to do Vulnerability Prioritization
Working through all of the details that go into choosing what to fix and when
  
James Berthoty
2
Why and How to Implement Seccomp Policies
Explaining the use cases and how to implement an under-discussed Kubernetes feature
  
James Berthoty
What do I think about Wiz Code?
Answering my most received question from the last 2 weeks
  
James Berthoty
5

September 2024

CUPS Vulnerability Response Resources
Resources and analysis on the latest zero days: CVE-2024-47176, CVE-2024-47076, CVE-2024-47175, and CVE-2024-47177
  
James Berthoty
2
Comparing Aikido and Snyk for SCA Scanning
A small step towards total market coverage
  
James Berthoty
3
Vulnerability Management Part 1 - Assets and Fixes
A three part series detailing what data is helpful for operationalizing vulnerability management (1/3)
  
James Berthoty
Defining Reachability - is it just hype?
(1/3) Exploring what's been up with reachability since our last talk about it
  
James Berthoty

August 2024

How Container Vulns Get Fixed
Walking through the process of fixing container vulnerabilities
  
James Berthoty

July 2024

Shortcuts Sell
And other realities from last week's fundraising
  
James Berthoty
1
WTF is Cloud Application Detection Response (CADR)?
Everything security teams need to detect real time attacks against modern infrastructure (Part 3/3)
  
James Berthoty
The Kubernetes Gap in CNAPP
Exploring why many CNAPPs have a Kubernetes gap
  
James Berthoty
CVE-2024-6387 Response Resources - "regreSSHion"
TL;DR: Qualys research team discovered an issue where you can exploit OpenSSH with a “brute force” like timing attack from the outside.
  
James Berthoty
© 2024 James Berthoty
PrivacyTermsCollection notice
Start WritingGet the app
Substack is the home for great culture