Proud to be sponsoring this #Rust meetup in #Cambridge! (it's tonight and there are still spaces) Follow CambridgeRust meetup.com/cambridge-rust…

On Tue June 18, fwd:cloudsec, collect our two flyers containing 1/ A guide for Red Teams to test your egress filtering proxy or firewall 2/ Most commonly allowed outbound FQDNs

👀 keeping your outbound traffic for cloud apps visible 👀 We've updated our "Disabling Encrypted ClientHello in Google Chrome, and Why" with instructions for Chrome v122+ and headless Chrome in containers. chasersystems.com/blog/disabling…

Advisory: DiscrimiNAT Firewall is built on Ubuntu 20.04 LTS (Focal Fossa) since v2.5.2 (from 2023-03-27), which in turn is not vulnerable to the recently discovered OpenSSH regreSSHion bypass. ubuntu.com/security/CVE-2…

Glad to be supporting the Rust community in Cambridge!

Read about the risks in using wildcards in #egress domain names when allowing CSPs and CDNs, in the Philosophy section of this post. #kahneman We've introduced a safer syntax that invokes the deliberative, #System2 mind to craft a more careful pattern. chasersystems.com/blog/wildcards…

#egress filtering data from #healthcare and #financial sectors

Proud to support the foray of proper cloud security talks into Europe!

Hope everyone enjoyed the lunch at fwd:cloudsec 🍴

DiscrimiNAT Firewall, for outbound filtering, v2.9.0 released on AWS. Release notes: chasersystems.com/docs/discrimin…

DiscrimiNAT Firewall, for outbound filtering, v2.9.0 released on GCP. Release notes: chasersystems.com/docs/discrimin…

Comparison page with GCP NGFW is now up, scoped to egress filtering. Advantages DiscrimiNAT has: 🌟 Wildcard Support 💨 Low* DNS TTL handling 🔍 Monitoring, Discovery & Dry-Run mode 👮 Spoofing Prevention chasersystems.com/discriminat/co… * no more dropped connections to 5s TTL AWS S3

Update network endpoints for Win32 apps and PowerShell scripts by December 27, 2024* mc.merill.net/message/MC9643… * we only just found out, but your egress FQDNs allowlist might need an update

We're looking for a solid, network security cloud engineer to work on DiscrimiNAT Firewall and a new SaaS product we're developing. linkedin.com/jobs/view/4143…

Wildcards were a game-changer in GCP for this👇customer in reducing #egress management overhead. ✅Monitoring / Dry-Run mode ✅SNI spoofing proof tech ✅Public Suffix List / Effective TLD checks ✅Terraform Deploy now or get a demo from engineering: chasersystems.com 👇

Wildcards are now GA from us for network egress on GCP. Took time to develop since we didn't want the solution to be trivially bypassable with SNI Spoofing [1] or cause interruptions to your traffic intermittently with false positives (as is the case with known issue FWAAS-1501

We make it easier for you to enable an outbound network traffic firewall in full allowlist enforcement mode -- with discovery, dry run and micro-segmentation. Available on AWS and GCP. Search for DiscrimiNAT Firewall in your cloud web console. #egress #filtering