Tag: bitbucket
-
Cyber Defense – Thinking like a hacker in 2022
It’s one thing to build your IT security by ticking the box next to each threat, and deploying a best of breed tool to address it. But in the face of their ever-growing sophistication, truly effective defense against cyber attacks also requires you to get inside the mind of your hacker. What do they really […]
-
Soteri Scanning found a password. Now what?
Nobody installs Soteri’s Security for Bitbucket or Security for Confluence Cloud hoping to find a an improperly stored password or an accidentally committed API key. Yet our customers know that this is an all too common occurrence. It’s very possible that in the near future, you’ll run a Soteri Security Scan, and have a scan […]
-
Security for Bitbucket now detects scans performed with old settings
In earlier versions of Security for Bitbucket, a branch was considered “Up to date” if the latest commit was scanned, even if the scan rules had changed since the scan was performed. Our customers brought to our attention the use case of rolling out a new global rule, or modifying an existing rule — and […]
-
Securing Bitbucket Server: best practices in the face of the Ukraine cyber warfare
A global cybersecurity crisis has been brewing for years, but with the recent war in Ukraine, hacking has become highly weaponized. Companies publicly supporting Ukraine have been experiencing state-sponsored retaliation attacks. So we figured it’s a good time to review some basic best practices for Bitbucket Server — the most effective security practices are often […]
-
Security for Bitbucket per-repository configuration will be loaded from the default branch
Soteri’s Security for Bitbucket offers an option to customize the configuration of scans on a per-repository basis using a YAML file placed at the root of the repository. This flexibility can provide a lot of benefits for repositories which have a lot of binary data, or require custom rules to detect potentially sensitive content. Starting with Security […]