#microsegmentation — Public Fediverse posts

acens: Driving Next-Gen, Cloud-Native Services with Isovalent

The way service providers build and secure their infrastructure is changing—fast. As Kubernetes becomes the operational backbone for…
#Spain #ES #Europe #Europa #EU #Telefónica #CloudNative #cloudnetworking #Kubernetes #microsegmentation #Security #ServiceProvider
https://www.europesays.com/spain/25774/

Akamai Bolsters AI Browser Security with $205M LayerX Acquisition

Akamai is taking browser security to the next level with its $205 million acquisition of LayerX, a cutting-edge startup that's changing the game with its innovative approach to securing interactions between users and applications. By integrating LayerX's technology, Akamai is bolstering its security stack to protect the…

https://osintsights.com/akamai-bolsters-ai-browser-security-with-205m-layerx-acquisition?utm_source=mastodon&utm_medium=social

#BrowserSecurity #Ai #ZeroTrustNetworkArchitecture #Microsegmentation #Ztna

https://www.europesays.com/ch/53467/ Nestle India’s consumer-first, tech-first approach pays off #ConsumerFirst #FMCGGrowth #GreenTea #IndiaInc #InnovationSpeed #MaggiDemand #ManishTiwary #MicroSegmentation #NesteaInnovations #Nestlé #NestléIndia #QuickCommerce #RuralExpansion #RuralMarkets #TechFirst #VolumeGrowth

Wow, just when you think the cyber threats can't get crazier... January 2026 already delivered a brutal reminder with ransomware hammering healthcare, manufacturing, and even energy/utilities sectors hard 🚨. Groups like Qilin and others are going after ICS controllers and safety systems more aggressively, and AI is supercharging phishing, malware creation, and lateral movement like never before. 😬
#Cybersecurity #Microsegmentation #ZeroTrust #OTSecurity #Ransomware

Wow, just when you think the cyber threats can't get crazier... January 2026 already delivered a brutal reminder with ransomware hammering healthcare, manufacturing, and even energy/utilities sectors hard 🚨. Groups like Qilin and others are going after ICS controllers and safety systems more aggressively, and AI is supercharging phishing, malware creation, and lateral movement like never before. 😬
#Cybersecurity #Microsegmentation #ZeroTrust #OTSecurity #Ransomware

Microsegmentation Master Class: Why Hardware Wins against Software in the Real World https://youtu.be/U3B6GTCmQ3g
#cybersecurity #BYOS #microsegmentation #hardware #FIPS140-2 #ZeroTrust

Microsegmentation Master Class: Why Hardware Wins against Software in the Real World https://youtu.be/U3B6GTCmQ3g
#cybersecurity #BYOS #microsegmentation #hardware #FIPS140-2 #ZeroTrust

Microsegmentation Master Class: Why Hardware Wins against Software in the Real World https://youtu.be/U3B6GTCmQ3g
#cybersecurity #BYOS #microsegmentation #hardware #FIPS140-2 #ZeroTrust

Microsegmentation Master Class: Why Hardware Wins against Software in the Real World https://youtu.be/U3B6GTCmQ3g
#cybersecurity #BYOS #microsegmentation #hardware #FIPS140-2 #ZeroTrust

New blog posted discussing various forms of “micro-segmentation”, and use of tags instead of IP addresses in ACL’s. With callout to a great post about flows by Daniel Dib with some great comments. https://www.linkedin.com/pulse/microsegmentation-versus-nac-ip-based-acls-peter-welcher-rtoae/
Tags: #PeterWelcher #CCIE1773 #Security #MicroSegmentation #NAC #SecurityGroupTag #Cisco #Elisity #ForeScout #Flows

New blog posted discussing various forms of “micro-segmentation”, and use of tags instead of IP addresses in ACL’s. With callout to a great post about flows by Daniel Dib with some great comments. https://www.linkedin.com/pulse/microsegmentation-versus-nac-ip-based-acls-peter-welcher-rtoae/
Tags: #PeterWelcher #CCIE1773 #Security #MicroSegmentation #NAC #SecurityGroupTag #Cisco #Elisity #ForeScout #Flows

New blog posted discussing various forms of “micro-segmentation”, and use of tags instead of IP addresses in ACL’s. With callout to a great post about flows by Daniel Dib with some great comments. https://www.linkedin.com/pulse/microsegmentation-versus-nac-ip-based-acls-peter-welcher-rtoae/
Tags: #PeterWelcher #CCIE1773 #Security #MicroSegmentation #NAC #SecurityGroupTag #Cisco #Elisity #ForeScout #Flows

New blog posted discussing various forms of “micro-segmentation”, and use of tags instead of IP addresses in ACL’s. With callout to a great post about flows by Daniel Dib with some great comments. https://www.linkedin.com/pulse/microsegmentation-versus-nac-ip-based-acls-peter-welcher-rtoae/
Tags: #PeterWelcher #CCIE1773 #Security #MicroSegmentation #NAC #SecurityGroupTag #Cisco #Elisity #ForeScout #Flows

New blog posted discussing various forms of “micro-segmentation”, and use of tags instead of IP addresses in ACL’s. With callout to a great post about flows by Daniel Dib with some great comments. https://www.linkedin.com/pulse/microsegmentation-versus-nac-ip-based-acls-peter-welcher-rtoae/
Tags: #PeterWelcher #CCIE1773 #Security #MicroSegmentation #NAC #SecurityGroupTag #Cisco #Elisity #ForeScout #Flows

An actively exploited GeoServer XXE vulnerability is prompting renewed discussion around breach readiness in public-sector and enterprise environments.

Experts note that unauthenticated flaws in widely deployed open-source platforms significantly increase exposure, especially where asset discovery and patch coordination are constrained.

Venky Raju, Field CTO at ColorTokens:
“The massive adoption of open-source software has significantly increased the attack surface of many enterprises, often without their knowledge. Unauthenticated vulnerabilities are particularly concerning because they bypass identity and application-level controls. The GeoServer vulnerability comes on the heels of a larger one called React2Shell (CVE-2025-55182), which scored a perfect 10 on the CVSS metric.

However, enterprises may not be able to patch servers quickly due to internal challenges, such as discovering affected assets, identifying affected applications, scheduling patch updates, etc. As an emergency measure, organizations should consider microsegmentation controls to isolate affected assets or zones with just enough policies to maintain business continuity while preventing lateral movement using commonly used techniques. The MITRE framework is an excellent guide for identifying the tactics hackers use to move laterally from the initially compromised system.”

How are teams handling containment when patching isn’t immediate?

Engage and follow @technadu for grounded infosec coverage.

#InfoSec #ZeroTrust #Microsegmentation #GeoServer #OpenSourceRisk #ThreatDetection #TechNadu

An actively exploited GeoServer XXE vulnerability is prompting renewed discussion around breach readiness in public-sector and enterprise environments.

Experts note that unauthenticated flaws in widely deployed open-source platforms significantly increase exposure, especially where asset discovery and patch coordination are constrained.

Venky Raju, Field CTO at ColorTokens:
“The massive adoption of open-source software has significantly increased the attack surface of many enterprises, often without their knowledge. Unauthenticated vulnerabilities are particularly concerning because they bypass identity and application-level controls. The GeoServer vulnerability comes on the heels of a larger one called React2Shell (CVE-2025-55182), which scored a perfect 10 on the CVSS metric.

However, enterprises may not be able to patch servers quickly due to internal challenges, such as discovering affected assets, identifying affected applications, scheduling patch updates, etc. As an emergency measure, organizations should consider microsegmentation controls to isolate affected assets or zones with just enough policies to maintain business continuity while preventing lateral movement using commonly used techniques. The MITRE framework is an excellent guide for identifying the tactics hackers use to move laterally from the initially compromised system.”

How are teams handling containment when patching isn’t immediate?

Engage and follow @technadu for grounded infosec coverage.

#InfoSec #ZeroTrust #Microsegmentation #GeoServer #OpenSourceRisk #ThreatDetection #TechNadu

An actively exploited GeoServer XXE vulnerability is prompting renewed discussion around breach readiness in public-sector and enterprise environments.

Experts note that unauthenticated flaws in widely deployed open-source platforms significantly increase exposure, especially where asset discovery and patch coordination are constrained.

Venky Raju, Field CTO at ColorTokens:
“The massive adoption of open-source software has significantly increased the attack surface of many enterprises, often without their knowledge. Unauthenticated vulnerabilities are particularly concerning because they bypass identity and application-level controls. The GeoServer vulnerability comes on the heels of a larger one called React2Shell (CVE-2025-55182), which scored a perfect 10 on the CVSS metric.

However, enterprises may not be able to patch servers quickly due to internal challenges, such as discovering affected assets, identifying affected applications, scheduling patch updates, etc. As an emergency measure, organizations should consider microsegmentation controls to isolate affected assets or zones with just enough policies to maintain business continuity while preventing lateral movement using commonly used techniques. The MITRE framework is an excellent guide for identifying the tactics hackers use to move laterally from the initially compromised system.”

How are teams handling containment when patching isn’t immediate?

Engage and follow @technadu for grounded infosec coverage.

#InfoSec #ZeroTrust #Microsegmentation #GeoServer #OpenSourceRisk #ThreatDetection #TechNadu

Imagine your network acting like a digital fortress on autopilot—automatically sealing breaches before they even happen. Curious how automated microsegmentation is revolutionizing Zero Trust? Read on to discover more.

https://thedefendopsdiaries.com/how-modern-microsegmentation-makes-zero-trust-achievable-and-painless/

#microsegmentation
#zerotrust
#networksecurity
#cybersecurityautomation
#lateralmovement
#identitysecurity
#cloudsecurity
#securityautomation
#infosec

Imagine your network acting like a digital fortress on autopilot—automatically sealing breaches before they even happen. Curious how automated microsegmentation is revolutionizing Zero Trust? Read on to discover more.

https://thedefendopsdiaries.com/how-modern-microsegmentation-makes-zero-trust-achievable-and-painless/

#microsegmentation
#zerotrust
#networksecurity
#cybersecurityautomation
#lateralmovement
#identitysecurity
#cloudsecurity
#securityautomation
#infosec

Imagine your network acting like a digital fortress on autopilot—automatically sealing breaches before they even happen. Curious how automated microsegmentation is revolutionizing Zero Trust? Read on to discover more.

https://thedefendopsdiaries.com/how-modern-microsegmentation-makes-zero-trust-achievable-and-painless/

#microsegmentation
#zerotrust
#networksecurity
#cybersecurityautomation
#lateralmovement
#identitysecurity
#cloudsecurity
#securityautomation
#infosec

Just posted a new blog: Pete’s Take: Microsegmentation 03: Discovering Traffic Flows. URL: https://www.linkedin.com/pulse/petes-take-microsegmentation-03-discovering-traffic-flows-welcher-bykae/ Tags: #PeterWelcher #CCIE1773 #Microsegmentation #Elisity #Cisco #FlowDiscovery #TrafficAnalytics #NetworkTraffic

Software Microsegmentation Promises Security—But Is It Falling Short?
https://youtu.be/dYJUWje-Y1g #cybersecurity #microsegmentation #zerotrust #riskmanagment #FIPS-140-2 #hardware #software #BYOS #manufacturing #legacynetworks #energy #healthcare #ICS #OT

The Persistent Threat of Path Traversal Vulnerabilities in Software Development – Source: securityboulevard.com https://ciso2ciso.com/the-persistent-threat-of-path-traversal-vulnerabilities-in-software-development-source-securityboulevard-com/ #rssfeedpostgeneratorecho #SecurityBloggersNetwork #applicationprotection #CyberSecurityNews #microsegmentation #SecurityBoulevard #SecurityResearch #lateralmovement #nextgensecurity #BestPractices #Cybersecurity #Vulnerability #zerotrust #Security #advice

The Persistent Threat of Path Traversal Vulnerabilities in Software Development – Source: securityboulevard.com https://ciso2ciso.com/the-persistent-threat-of-path-traversal-vulnerabilities-in-software-development-source-securityboulevard-com/ #rssfeedpostgeneratorecho #SecurityBloggersNetwork #applicationprotection #CyberSecurityNews #microsegmentation #SecurityBoulevard #SecurityResearch #lateralmovement #nextgensecurity #BestPractices #Cybersecurity #Vulnerability #zerotrust #Security #advice

The Persistent Threat of Path Traversal Vulnerabilities in Software Development – Source: securityboulevard.com https://ciso2ciso.com/the-persistent-threat-of-path-traversal-vulnerabilities-in-software-development-source-securityboulevard-com/ #rssfeedpostgeneratorecho #SecurityBloggersNetwork #applicationprotection #CyberSecurityNews #microsegmentation #SecurityBoulevard #SecurityResearch #lateralmovement #nextgensecurity #BestPractices #Cybersecurity #Vulnerability #zerotrust #Security #advice

The Persistent Threat of Path Traversal Vulnerabilities in Software Development – Source: securityboulevard.com https://ciso2ciso.com/the-persistent-threat-of-path-traversal-vulnerabilities-in-software-development-source-securityboulevard-com/ #rssfeedpostgeneratorecho #SecurityBloggersNetwork #applicationprotection #CyberSecurityNews #microsegmentation #SecurityBoulevard #SecurityResearch #lateralmovement #nextgensecurity #BestPractices #Cybersecurity #Vulnerability #zerotrust #Security #advice

Breaking the Cybersecurity Insanity: A Smarter Path to Real-Time Protection
https://youtu.be/8FTm-0-uMRE #cybersecurity #ZeroTrust #microsegmentation #alwaysverify #ZTNA #leastprivilege

Zero Trust assumes that threats could be both external and internal, and thus, no entity, whether it is a user, device, or application, should be inherently trusted.

https://linuxexpert.org/deep-dive-into-zero-trust-security-model/

#ZeroTrust #Cybersecurity #NetworkSecurity #IAM #MFA #SSO #Microsegmentation #EndpointSecurity #ApplicationSecurity #DataSecurity #RBAC #LeastPrivilege #AssumeBreach #linux

#ChatGPT explaining cross-account Security Group referencing pretty neatly. One of the easiest ways to implement an IP Address-free trust between connected apps in #AWS.

Also called #microsegmentation.

FOLLOW US as we explore cloud network security with #AI.

#awssecurity

🔐 Industrial networks need stronger defenses. Microsegmentation goes beyond traditional models, creating secure zones that reduce risks and boost resilience.

👉 Here’s a simple diagram showing how it works.

#IndustrialCyberSecurity #Microsegmentation #ZeroTrust #RELIANOID
https://www.relianoid.com/resources/knowledge-base/misc/microsegmentation-of-industrial-networks/

Why Hardware Wins Against Software in the Real World of Microsegmentation. An Interview with BYOS CEO Matias Katz
https://youtu.be/VjYqisWGMf4 #CyberSecurity #Microsegmentation #LegacySystems #ZeroTrust #NetworkSecurity #FIPS140-2 #IoT #OTSecurity #CriticalInfrastructure

Zero Networks Raises $55 Million for Microsegmentation Solution https://www.securityweek.com/zero-networks-raises-55-million-for-microsegmentation-solution/ #CybersecurityFunding #microsegmentation #NetworkSecurity #networksecurity #ZeroNetworks #funding

Zero Networks Raises $55 Million for Microsegmentation Solution https://www.securityweek.com/zero-networks-raises-55-million-for-microsegmentation-solution/ #CybersecurityFunding #microsegmentation #NetworkSecurity #networksecurity #ZeroNetworks #funding

ColorTokens OT-in-a-Box: From Concept to Completion – Source: securityboulevard.com https://ciso2ciso.com/colortokens-ot-in-a-box-from-concept-to-completion-source-securityboulevard-com/ #rssfeedpostgeneratorecho #SecurityBloggersNetwork #CyberSecurityNews #microsegmentation #SecurityBoulevard #manufacturing #OTsecurity

Breach Readiness in a World That’s Always Connected – Source: securityboulevard.com https://ciso2ciso.com/breach-readiness-in-a-world-thats-always-connected-source-securityboulevard-com/ #rssfeedpostgeneratorecho #SecurityBloggersNetwork #CyberSecurityNews #microsegmentation #SecurityBoulevard #BreachReadiness

Euler’s Königsberg Bridges: How Simple Math Can Model Lateral Movement for Effective Microsegmentation – Source: securityboulevard.com https://ciso2ciso.com/eulers-konigsberg-bridges-how-simple-math-can-model-lateral-movement-for-effective-microsegmentation-source-securityboulevard-com/ #rssfeedpostgeneratorecho #SecurityBloggersNetwork #CybersecurityIndustry #CyberSecurityNews #CybersecurityMath #microsegmentation #SecurityBoulevard

Is your industrial network built for today’s threats? 🛡️

Microsegmentation helps reduce risks by isolating critical systems and controlling traffic flow — a key step in modern defense-in-depth strategies.

Explore how to implement it in our latest Knowledge Base article!
🔗 https://www.relianoid.com/resources/knowledge-base/misc/microsegmentation-of-industrial-networks/

#CyberSecurity #IndustrialNetworks #Microsegmentation #OTSecurity #ZeroTrust

I posted the final Microsegmentation Series blog: Pete’s Take: Microsegmentation 04: Building a Security Policy. URL: https://www.linkedin.com/pulse/petes-take-microsegmentation-04-building-security-policy-welcher-fk5je/ #PeterWelcher #CCIE1773 #Microsegmentation #Elisity #Cisco #PolicyComponents #SecurityPolicy

New blog posted: Pete’s Take: Microsegmentation 2: What’s On My Network? https://www.linkedin.com/pulse/petes-take-microsegmentation-2-whats-my-network-peter-welcher-xp1ie/ #PeterWelcher #CCIE1773 #Microsegmentation #Elisity #Cisco #DeviceDiscovery #IdentityGraph #Connectors

Just posted: new first blog in a Microsegmentation series. Link: https://www.linkedin.com/pulse/introduction-microsegmentation-peter-welcher-ngjfe/
#PeterWelcher #CCIE1773 #Microsegmentation #Elisity #Cisco

Why Most Microsegmentation Projects Fail—And How Andelyn Biosciences Got It Right – Source:thehackernews.com https://ciso2ciso.com/why-most-microsegmentation-projects-fail-and-how-andelyn-biosciences-got-it-right-sourcethehackernews-com/ #rssfeedpostgeneratorecho #CyberSecurityNews #microsegmentation #TheHackerNews

A Year in Review: 2024’s Milestones That Propel Us into 2025  – Source: securityboulevard.com https://ciso2ciso.com/a-year-in-review-2024s-milestones-that-propel-us-into-2025-source-securityboulevard-com/ #rssfeedpostgeneratorecho #SecurityBloggersNetwork #CyberSecurityNews #microsegmentation #SecurityBoulevard #BreachReadiness #CompanyNews #SBNNews

Posted blog: NFD36: Arista Does Micro-Segmentation. Covers one of several topics Arista presented at NFD36. #PeterWelcher #CCIE1773 #NFD36 #Arista #MicroSegmentation #CloudVision https://www.linkedin.com/pulse/copy-nfd36-arista-does-micro-segmentation-peter-welcher-mfm5e/

Microsegmentation has proven valuable in preventing attackers from moving laterally throughout the environment as well as helping organizations implement zero trust strategies and enforce the principle of least privilege access.

Elisity raised $27M series B funding to continue to expand its microsegmentation platform.

#cybersecurity #security #microsegmentation #microseg #zerotrust #lpa #LeastPrivilegeAccess #funding

https://www.wsj.com/articles/elisity-raises-37-million-as-critical-infrastructure-reels-from-cyberattacks-a7aa3e10?st=401af81w8ifsbjk&reflink=desktopwebshare_permalink

🌐 Elevate your network security with micro-segmentation! 💡 Explore how this innovative strategy, applied to load balancers, creates isolated segments for heightened protection. Uncover key features and actionable steps to fortify your network against evolving threats. Stay secure, stay ahead! 🔒 #MicroSegmentation #NetworkSecurity #LoadBalancers #Cybersecurity #InfoSec #ITSecurity #DigitalInnovation #TechSecurity #NetworkDefense #knowledge #Protection #Fortification 🚀https://www.relianoid.com/resources/knowledge-base/misc/what-is-micro-segmentation/

Skool Loop is much better. No account required.

Settings,
Select school,
Choose school,
confirm Selection,
confirm Choice,
Groups,
Select Choice,
Choose Selection.

Now my selection is chosen and my confirmation is selected. Bam! Done!

No email address or #conversion #funnel or target audience #microsegmentation or whatever bullshit required.

They have pretty quickly figured out that if my kids are attending that school then this advert for a local contractor is reasonable.

@dob That's a big scope.

Some things we do to make our lives easier and doesn't cost $$$.

Enable #guardduty and pipe all the alerts into a slack channel (+email as well).

Enable #cloudtrail log everything to an #S3 bucket in another account. #cloudwatch alerts on auth failures (to slack + email (some go to pagerduty #infosec contact).
We also have some alerts on updates when a cidr is added to a #SecurityGroup.

Don't use #ssh or #bastion/#JumpHosts use #ssm to run automations on the hosts (package install, service restarts etc) also to get a shell on a box (if needed at all). (you can use #TransitiveTags with #RoleAssumption to give granular access).
Using #ssm for console access also logs the entire session (including someone doing sudo su - root etc!) into #S3

Use #MicroSegmentation within our #vpc. Instances behind an #alb will only accept traffic from the #alb #SecurityGroup etc.. #rds, #elasticache willl only accept traffic from instances in the appropriate #SecurityGroup. (Basically we don't use cidr ingress rules, we use security group ids) (this works across accounts in the same region with peering, but not across regions however).

#aws

Breaking the Cybersecurity Insanity: A Smarter Path to Real-Time Protection
https://youtu.be/8FTm-0-uMRE #cybersecurity #ZeroTrust #microsegmentation #alwaysverify #ZTNA #leastprivilege

Breaking the Cybersecurity Insanity: A Smarter Path to Real-Time Protection
https://youtu.be/8FTm-0-uMRE #cybersecurity #ZeroTrust #microsegmentation #alwaysverify #ZTNA #leastprivilege

Breaking the Cybersecurity Insanity: A Smarter Path to Real-Time Protection
https://youtu.be/8FTm-0-uMRE #cybersecurity #ZeroTrust #microsegmentation #alwaysverify #ZTNA #leastprivilege