Recommendations and Guidelines

Take advantage of proven guidelines and recommendations to help you move more safely in the online world.

For Users

1 OctThreats

Device Security: Antivirus and Everything Around It

Why should we use antivirus software? And is it worth splashing out on premium features? In this article, we'll delve into the world of antivirus programs, which are more crucial than ever in today's online landscape. We'll uncover how these programs combat ever-evolving threats and safeguard your personal data. We'll explore how antivirus actually works and what other options you can employ against malicious files.

Passwords

Password Manager

Are you not using a password manager yet? In this article, you will learn why it is important, which one to choose, and also how to start using it.

Data Encryption

Learn to protect your data with encryption.

Threats

What if it catches fire?

We often write that preventing a fire is much better than fighting it. It is still valid. But what to do if a fire does break out? That’s the topic of the last part of the Cybersecurity series from CSIRT-MU.

Passwords

Take a moment to examine your passwords

Your passwords should be as important to you as your house keys.

For IT Admins

7 AugIT Admins

Updates: why they are important and what are the risks

Updates are an essential part of any secure system. They prevent incidents and ensure the smooth operation of IT systems and services. This article compares the benefits and risks of manual and automatic updates, primarily in Linux distributions. To complement this, it provides an example of automatic updates for the current LTS versions of Ubuntu 24.04 and 22.04.

IT Admins

Recommendations for securing devices on the MUNI network

Do you have multiple services running on your device for different user groups? A report from our team warns of a vulnerability in an application under your management that cannot be updated or disabled for specific reasons? These are not the only cases that pose a serious security risk that need to be addressed proactively.

IT AdminsE-mail

How to prevent the spread of backscatter emails by email servers of MU

How do these types of malicious emails originate? Why do we need to prevent their spread and how?

For DevOps

30 OctDevOps

Guide: Secret management in a system development lifecycle

In this guide, we discuss the secret management, why it is important, and different options in choosing the right approach.

29 OctDevOps

Guide: How to automate detection of secrets

In this tutorial, we will expand our knowledge of detecting secrets using GitLab hooks and its CI/CD pipeline.

29 OctDevOps

Guide: How to Start with Secrets Detection

When it comes to secret detection, remember, it's not a secret if everyone knows it-especially the hackers. Accidentally pushing a password or connection string into remote source code repository can happen even to the most skilled developers. This guide describes how to use two of them quickly and easily.

25 OctDevOps

Guideline: How to start with IaC SAST

In this text, we introduce helpful tools for scanning IaC artifacts and provide examples on how to integrate them into your CI/CD pipeline.

14 AugDevOps

How to start with SAST pipelines

In this guide for developers we describe how to easily run static application security testing (SAST) as part of GitLab CI/CD.