DevSecOps
API Security’s Role in Protecting Retail Cloud Apps
Protection from API security threats is crucial, especially for retail companies that hold sensitive customer and financial data ...
‘BLASTPASS’ iPhone Exploit — Apple Asleep at the Switch
Zero click, zero day, zero clue: Yet another iOS zero-day lets NSO’s Pegasus “mercenary spyware” cause chaos ...
Sourcegraph’s Shocking Screwup: Private Secrets in Public Repo
Credentials create crisis: AI source code navigation LLM leaks PII after DevOps SNAFU ...
Lapsus$ Jury Says Teen Duo Did Do Crimes
Arion Kurtaj and anon minor: Part of group that hacked Uber, Nvidia, Microsoft, Rockstar Games and many more ...
National Cybersecurity Strategy Requires Orgs to Rethink Software Quality
Software development is a global effort, with DevOps teams often dispersed around the world. According to Statista, there will be over 27.7 million developers worldwide in 2023. That’s a lot of engineers creating ...
How CIEM Offers a Clear Path to Cloud Security
For organizations looking to better navigate today’s often byzantine world of cloud identity management, CIEM is a valuable resource ...
Ransomware Robs Realtors — Rapattoni MLS-aaS Down: Day 8 and Counting
MLS FAIL: Home listings SaaS dead in the water as real estate agents lose leads ...
‘Sabotage the Factory’ — 16 Big Bugs in Codesys ICS/OT/SCADA Software
CoDe16 FAIL: Researchers unveil high-severity vulns in Codesys Control, used in millions of devices ...
Teenage Hackers Must be Stopped: US DHS’s CSRB Report
2FA SMS FAIL: Lapsus$ social engineers exploited weak two-factor authentication. Something must be done! (Well, this is something.) ...