StrongDM Blog (7)

XZ Utils Backdoor Explained: How to Mitigate Risks

Last week, Red Hat issued a warning regarding a potential presence of a malicious backdoor in the widely utilized data compression software library

What is Healthcare Data Security? Challenges & Best Practices

Healthcare data security protects sensitive patient information and related data from unauthorized access, use, or disclosure. The effective

Posts by Category:

Financial Services Cybersecurity Guide: Risks & Solutions

Financial services companies handle a vast amount of sensitive data, including the personal and financial information of their customers. This makes them a prime target for hackers and cybercriminals who want to steal that data. Hackers are constantly finding new ways to break through the walls of enterprise environments. If successful, they can cause serious problems like identity theft or fake transactions, impacting individuals and companies financially.

How to Remove a Directory in Linux (rm & rmdir)

In every aspect of Linux system administration, properly removing directories is not just a routine task, but an important aspect of maintaining system integrity and protecting data. This guide explains the importance of removing directories, and the requirements for safe removal, and provides step-by-step instructions on how to efficiently remove directories using the rmdir and rm commands.

Top 7 Penetration Testing Software for Companies in 2025

Pentest solutions enable automated or manual penetration tests. The top focuses for penetration tests are servers, web applications, and databases. The solution is available for IoT, mobile applications, networks, and cloud infrastructures as well.

How to Add a User to a Linux Group (Step-by-Step Guide)

In this article, you will learn how to effectively add users to Linux groups, an essential task for both system administrators and users. Whether you're an experienced administrator or a Linux novice, this guide will provide you with the knowledge and skills you need to effectively manage user access and privileges in your Linux environment.

Comparing SSH Keys: A Comprehensive Guide (RSA, DSA, ECDSA)

This blog post dives into the world of SSH keys and highlights the different types available. By comparing these different SSH key types, we aim to provide insights that allow users to make informed decisions based on their specific security needs.

13 Password Management Best Practices to Know in 2025

Weak passwords are the third most common attack vector for malicious actors — and often the most difficult for enterprises to control since individual employees typically choose their own passwords. Effectively managing passwords is critical in safeguarding your organization’s assets, maintaining regulatory compliance, and minimizing security risks. In this article, we’ll share 13 password management best practices that will help you keep your systems and data safe from password-related attacks.

Cedar Go Implementation: Simplifying Security for Developers

We are pleased to announce that Amazon has accepted StrongDM's native Go implementation of Cedar into the Cedar Policy Organization's official GitHub repository. This allows Go developers to use Cedar, a security and authorization framework built to be fast, secure, and analyzable natively in their Go programs.

How to Configure SSH Certificate-Based Authentication (Tutorial)

With an emphasis on the significance of certificate-based authentication, this article seeks to clarify SSH authentication. It gives you a thorough understanding to support the safety of your digital interactions by outlining the benefits of using this approach over traditional ones and covering the implementation steps.

13 API Security Best Practices to Know in 2025

Implementing robust API security best practices prevents unauthorized access, protects your organization's reputation, and ensures the trust and confidence of your users. Let’s look at 13 best practices that will keep your APIs on lockdown.

PostgreSQL Drop/Delete Database: 15 Ways, Examples and More

The DROP DATABASE command in PostgreSQL is a powerful command that is used to delete a database along with all its associated objects, such as tables, views, indexes, and other database-specific elements. It is often a good practice to clean up your workspace by removing unused databases. However, keep in mind that deleting an existing PostgreSQL database deletes all objects and data within that database. This command should be used with caution as it irreversibly removes the specified database

Context-Based Access Controls: Challenges, Importance & More

Context-based access controls refer to a dynamic and adaptive approach to managing security policies in modern infrastructure. Addressing challenges in enforcing consistent security across diverse platforms, these policies consider factors such as device posture and geo-location to adjust access controls dynamically. By narrowing access based on contextual parameters, they reduce the attack surface, enhance security, and streamline policy administration, ensuring compliance in evolving

10 Ways to Prevent Man-in-the-Middle (MITM) Attacks

It’s difficult to detect MITM attacks, and attackers can target anyone online. Hackers can capture user credentials from customers by attacking sites or apps that require login authentication. They may also target businesses with sites or apps that store customer or financial information.Want to know how to prevent man-in-the-middle attacks? Follow these 10 proven strategies.

5 6 7 8 9 32

Want to learn more?
See StrongDM in action. 👀

Book a Demo