Tag: Cybersecurity
Datadog Cloud Security Platform Advances DevSecOps
Datadog has launched a Datadog Cloud Security Platform that promises to advance DevSecOps by identifying potential threats using the same agent software many DevOps teams already rely on to instrument applications. Renaud ...
The Shopify Breach: Why Authz Exploits Slip by Most Security Defenses
What Happened As part of a bug bounty, the security researcher Uzsunny found a critical vulnerability on the Shopify platform. The vulnerability allowed the attacker to assign himself as a “collaborator” to ...
Best Practices for Cloud Incident Response
Cloud computing is now mainstream, with almost all organizations running at least some resources in the public cloud—whether software-as-a-service (SaaS), platform-as-a-service (PaaS) or infrastructure-as-a-service (IaaS). Security teams have been scrambling to adapt ...
What Biden’s Cybersecurity EO Means for DevOps Teams
On May 12, 2021 President Biden issued Executive Order 14028, also known as the Executive Order on Improving the Nation’s Cybersecurity. This EO covers a lot of ground, and like all executive ...
WhiteHat Security Allies With Bit Discovery on Vulnerability Intelligence
WhiteHat Security, a subsidiary of NTT, has announced an integration with Bit Discovery to make it easier for developers and cybersecurity teams to discover the extent to which the attack surface they ...
Vulcan Cyber Research Reveals Most Enterprise Cybersecurity Teams Lack the Ability to Remediate Risk
Benchmark study finds most cybersecurity organizations lack the tooling and resources to deliver enterprise cyber hygiene TEL AVIV, Israel — May 12, 2021 — Vulcan Cyber®, developers of the industry’s only risk and vulnerability remediation ...
Trend Micro Allies With Snyk to Advance DevSecOps
Trend Micro and Snyk unveiled today a software-as-a-service (SaaS) platform the two companies have jointly developed to identify vulnerabilities in open source code. The Trend Micro Cloud One - Open Source Security ...
The Basics of DevSecOps Adoption
Embracing DevOps is essential, but keeping the software delivery and deployment pipeline safe has become more critical than ever. While attackers are keen on getting into your Docker containers or Kubernetes clusters, ...
DevOps Connect at RSAC 2021: Insightful Talks, Live Q&A, Workshops, Pilates and More
Veronica Haggar | | appsec, Christopher Krebs, Cloud Security, Cybersecurity, devops connect, devsecops, rsa conference, RSAC, RSAC 2021, virtual event, Workshop FridayWe are excited to announce the return of DevOps Connect: DevSecOps Virtual Summit on May 19, as part of the RSA Conference 2021. This year, internationally recognized speakers will take a deep ...
The Time for Collaborative Security Is Now
As Bruce Schneier famously said, “security is a process, not a product.” We commonly see companies pour millions of dollars into cybersecurity products and tools to protect against vulnerabilities and lower risks, ...
How to Bring DevOps and Security Teams Closer Together
More often than not, there seems to be friction between DevOps and security teams. Despite having the same end goals of creating the most secure code and preventing any potential security pitfalls, ...
Live Fireside Chat with Christopher Krebs: How to Combat Disinformation
Veronica Haggar | | Christopher Krebs, CISA, Cybersecurity, Department of Homeland Security, devops connect, DevOps Connect: DevSecOps, DHS, disinformation, rsa conference, RSACWe live in a digital world where most information is now found online. This makes it increasingly difficult to verify the veracity of information. Threat actors have been taking advantage of the ...
