Netskope Private Access for Windows Autopilot
Solution Overview Windows Autopilot Overview Traditionally IT administrators spend a lot of time on building and customizing OS images, compatibility testing with various device makes and models etc. ...
Blog Articles
Threat Vulnerability Management: External Attack Surface Management
What is attack surface management? Attack surface management (ASM) is the continued discovery, classification, and monitoring of an organization's external assets. It is crucial that teams leverage th...
Managing Netskope Publishers in AWS using Terraform
Introduction In my previous post I introduced the Netskope Provider for Terraform and showed you how it can be used to deploy publishers and applications inside of a Netskope tenant. While I think thi...
Introducing the Netskope Terraform Provider
Introduction I am super excited to announce that the Netskope security cloud can now be managed as code. "How is this possible?", you might ask. The answer is by using the newly released Terraform pro...
How-to configure SSO with Okta for Netskope Cloud Exchange
This article will cover how to configure Single-Sign-On (SSO) for the Netskope Cloud Exchange (CE) platform using Okta. This will allow you to manage administrator access to CE from purely within Ok...
How-to configure SSO with Azure AD for Netskope Cloud Exchange
This article will cover how to configure Single-Sign-On (SSO) for the Netskope Cloud Exchange (CE) platform using Azure Active Directory (AAD). This will allow you to manage administrator access to ...
A Guide to Deploy Netskope Cloud Exchange
In this article, we will cover how to deploy Netskope Cloud Exchange: A platform that facilitates the sharing of information (such as IOCs, risk scores, and logs) between different security vendors; r...
Allow our Risk Management team the ability to tag our Corporate managed apps in the CCI UI
To edit (tag) a single app, hover over the app on the main page and click the Edit tag icon. To tag multiple apps, select the checkbox in the top left corner for each app. Click the Edit tags icon in ...
A Real-World Look at AWS Best Practices: Logging
Check out our latest blog series on AWS Best Practices on Logging! Although CloudTrail is a well-trodden subject for AWS Security, there were still a few interesting findings among a slice of our cust...
Who Do You Trust? Challenges with OAuth Application Identity
We just published another blog related to application risk from OAuth applications: Who Do You Trust? Challenges with OAuth Application Identity . This follows up on several other recent blogs related...
A Real-World Look at AWS Best Pratices: Networking
We just published A Real-World Look at AWS Best Practices: Networking, part 6 of our AWS Best Practices series, looking closer at networking configurations with NACLs and Security Groups with respect ...
The Revolving Ransomware Door
The Ragnarok ransomware gang had been around since 2019, and suddenly ceased operations today, posting a universal decrypter and instructions on how do use it. What does this mean for the risk of rans...
AWS Best Practices: Storage
In part 5 of our continuing series on AWS Best Practices, we cover real-world stats on storage, specifically public access on buckets and encryption of EBS volumes: https://www.netskope.com/blog/a-rea...
New phishing attacks abusing OAuth authorization flows
We just published the first three parts of a multi-blog series on new phishing attacks that can exploit OAuth 2.0 authorization flows: https://www.netskope.com/blog/new-phishing-attacks-exploiting-oau...
Operationalizing IP Allow Lists for Cloud Environments
We recently published a blog, Operationalizing IP Allow Lists for Cloud Environments, talking about the process and phases for effective implementation of IP allow lists. IP allow lists have tradition...
OAuth Client Application Risk
We recently published Who Do You Trust? OAuth Client Application Trends which looks at real-world trust of applications by users using Google Identity for authentication and approval. It highlights so...
AWS Best Practices: IAM Policies and Password Policies
Continuing our blog series on AWS Best Practices, we've published two additional blogs looking at real-world AWS environments and practices around IAM policies and password policies, along with easy s...
A Real-World Look at AWS Best Practices: IAM User Accounts
In our latest blog, we explore IAM best practices and AWS and highlight two findings: The majority of organizations don't enforce access key rotation for their IAM users. The majority of organizations...
Malware delivered via cloud apps
Our latest blog post shares stats that show the amount of malware delivered via cloud apps continues to increase. Cybercriminals are deliberately abusing popular cloud apps for malware delivery to exp...
AWS Root Account Usage
The blog post shares the details of our analysis: https://www.netskope.com/blog/a-real-world-look-at-aws-best-practices-root-accounts The Netskope Security Cloud makes it easy for you to check if your...
