<img src="https://ws.zoominfo.com/pixel/6169bf9791429100154fc0a2" width="1" height="1" style="display: none;">

PAM Was Dead. StrongDM Just Brought it Back to Life. ✨  An important message from StrongDM's CEO!

Search
Close icon
Search bar icon
strongDM logo

blog

XZ Utils Backdoor Explained: How to Mitigate Risks

XZ Utils Backdoor Explained: How to Mitigate Risks

Last week, Red Hat issued a warning regarding a potential presence of a malicious backdoor in the widely utilized data compression software library
What is Healthcare Data Security? Challenges & Best Practices

What is Healthcare Data Security? Challenges & Best Practices

Healthcare data security protects sensitive patient information and related data from unauthorized access, use, or disclosure. The effective
Financial Services Cybersecurity Guide: Risks & Solutions
Financial Services Cybersecurity Guide: Risks & Solutions
Financial services companies handle a vast amount of sensitive data, including the personal and financial information of their customers. This makes them a prime target for hackers and cybercriminals who want to steal that data. Hackers are constantly finding new ways to break through the walls of enterprise environments. If successful, they can cause serious problems like identity theft or fake transactions, impacting individuals and companies financially.
How to Remove a Directory in Linux Step-by-Step (rm & rmdir)
How to Remove a Directory in Linux Step-by-Step (rm & rmdir)
In every aspect of Linux system administration, properly removing directories is not just a routine task, but an important aspect of maintaining system integrity and protecting data. This guide explains the importance of removing directories, and the requirements for safe removal, and provides step-by-step instructions on how to efficiently remove directories using the rmdir and rm commands.
Top 7 Penetration Testing Software for Companies in 2024
Top 7 Penetration Testing Software for Companies in 2024
Pentest solutions enable automated or manual penetration tests. The top focuses for penetration tests are servers, web applications, and databases. The solution is available for IoT, mobile applications, networks, and cloud infrastructures as well.
How to Add a User to a Linux Group (Step-by-Step Guide)
How to Add a User to a Linux Group (Step-by-Step Guide)
In this article, you will learn how to effectively add users to Linux groups, an essential task for both system administrators and users. Whether you're an experienced administrator or a Linux novice, this guide will provide you with the knowledge and skills you need to effectively manage user access and privileges in your Linux environment.
Comparing SSH Keys: A Comprehensive Guide (RSA, DSA, ECDSA)
Comparing SSH Keys: A Comprehensive Guide (RSA, DSA, ECDSA)
This blog post dives into the world of SSH keys and highlights the different types available. By comparing these different SSH key types, we aim to provide insights that allow users to make informed decisions based on their specific security needs.
13 Password Management Best Practices to Know in 2024
13 Password Management Best Practices to Know in 2024
Weak passwords are the third most common attack vector for malicious actors — and often the most difficult for enterprises to control since individual employees typically choose their own passwords. Effectively managing passwords is critical in safeguarding your organization’s assets, maintaining regulatory compliance, and minimizing security risks. In this article, we’ll share 13 password management best practices that will help you keep your systems and data safe from password-related attacks.
Cedar Go Implementation: Simplifying Security for Developers
Cedar Go Implementation: Simplifying Security for Developers
We are pleased to announce that Amazon has accepted StrongDM's native Go implementation of Cedar into the Cedar Policy Organization's official GitHub repository. This allows Go developers to use Cedar, a security and authorization framework built to be fast, secure, and analyzable natively in their Go programs.
How to Configure SSH Certificate-Based Authentication (Tutorial)
How to Configure SSH Certificate-Based Authentication (Tutorial)
With an emphasis on the significance of certificate-based authentication, this article seeks to clarify SSH authentication. It gives you a thorough understanding to support the safety of your digital interactions by outlining the benefits of using this approach over traditional ones and covering the implementation steps.
13 API Security Best Practices to Know in 2024
13 API Security Best Practices to Know in 2024
Implementing robust API security best practices prevents unauthorized access, protects your organization's reputation, and ensures the trust and confidence of your users. Let’s look at 13 best practices that will keep your APIs on lockdown.
PostgreSQL Drop Database (15+ Methods)
PostgreSQL Drop Database (15+ Methods)
The DROP DATABASE command in PostgreSQL is a powerful command that is used to delete a database along with all its associated objects, such as tables, views, indexes, and other database-specific elements. It is often a good practice to clean up your workspace by removing unused databases. However, keep in mind that deleting an existing PostgreSQL database deletes all objects and data within that database. This command should be used with caution as it irreversibly removes the specified database
Context-Based Access Controls: Challenges, Importance & More
Context-Based Access Controls: Challenges, Importance & More
Context-based access controls refer to a dynamic and adaptive approach to managing security policies in modern infrastructure. Addressing challenges in enforcing consistent security across diverse platforms, these policies consider factors such as device posture and geo-location to adjust access controls dynamically. By narrowing access based on contextual parameters, they reduce the attack surface, enhance security, and streamline policy administration, ensuring compliance in evolving
10 Ways to Prevent Man-in-the-Middle (MITM) Attacks
10 Ways to Prevent Man-in-the-Middle (MITM) Attacks
It’s difficult to detect MITM attacks, and attackers can target anyone online. Hackers can capture user credentials from customers by attacking sites or apps that require login authentication. They may also target businesses with sites or apps that store customer or financial information.Want to know how to prevent man-in-the-middle attacks? Follow these 10 proven strategies.
StrongDM app UI showing available infrastructure resources
Connect your first server or database, without any agents, in 5 minutes.