security breach | The Blog Pros

June 26, 2021

How the Capital One Breach Could Have Been Avoided With Application-Layer Data Encryption

Image credit: Unsplash

In July 2019, Capital One became aware of a data breach inside their Amazon Web Services (AWS) cloud infrastructure. A security researcher found social media posts describing the attack, and after investigating the breach, the company discovered that the attacker was able to steal the personal information of approximately 100 million individuals in the United States and 6 million in Canada.

May 2, 2019

Data Wave in the Cloud: Reconsidering Cloud Security

When organizations originally started to move data to the cloud in a meaningful way, the security conversation usually centered around one tactic – access. After all, if you could ensure that only the right people had access to a particular cloud, your data would be safe, right? Not quite.

As we continue to see an increase in data breaches impacting data stored in the cloud, it’s clear that access, in and of itself, isn’t the silver bullet solution. If bad actors want to get your data, they will find a way — they study each new access control technology until they find its vulnerability. Continuing to simply apply another control that hackers will again unlock is a never-ending, no-win prospect — and not cost-effective. In fact, though organizations pour more money into data security, breaches continue to increase.

Packages for Store Routines in MariaDB 11.4
No categories
MariaDB 11.4 introduced many advanced features. One that grabbed my attention is the general support of packages for stored routines. Although this was previously available by activating the Oracle compatibility mode, now the feature is available gener... […]
Maintain Chat History in Generative AI Apps With Valkey
No categories
A while back I wrote up a blog post on how to use Redis as a chat history component with LangChain. Since LangChain already had Redis chat history available as a component, it was quite convenient to write a client application. But, that's not the same... […]
Knowledge Graph Enlightenment, AI, and RAG
No categories
In the previous edition of the YotG newsletter, the wave of Generative AI hype was probably at its all-time high. Today, while Generative AI is still talked about and trialed, the hype is subsiding. Skepticism is settling in, and for good reason. Repor... […]
Building an Effective Zero Trust Security Strategy for End-To-End Cyber Risk Management
No categories
You've probably heard a lot about zero-trust security lately, and for good reason. As we move more of our applications and data to the cloud, the traditional castle-and-moat approach to security just doesn't cut it anymore. This makes me come... […]
Phased Approach to Data Warehouse Modernization
No categories
A modernized database will help you focus on building innovative solutions rather than investing your time and effort in managing these legacy systems. Based on the scale of your existing data warehouse processes or jobs, it can be an enormous task to ... […]