Cloud Security, DevOps, AppSec – The Week’s Best News – 2020.01.15
A Review of the Best News of the Week on Cloud Security, DevOps, AppSec In App Development, Does No-Code Mean No Security? (Dark Reading, Jan 08 2020) No-code and low-code development platforms are part of application development, but there are keys to making sure that they don’t leave security behind with traditional coding. Learning from […]
Cloud Security, DevOps, AppSec – The Week’s Best News – 2020.01.08
A Review of the Best News of the Week on Cloud Security, DevOps, AppSec Red Hat DevSecOps Strategy Centers on Quay (Container Journal, Jan 06 2020) Red Hat is moving toward putting the open source Quay container registry at the center of its DevSecOps strategy for securing containers. The latest 3.2 version of Quay adds […]
Cloud Security, DevOps, AppSec – The Week’s Best News – 2020.01.01
A Review of the Best News of the Week on Cloud Security, DevOps, AppSec Predictions 2020: Infrastructure and Ops Trends to Watch in 2020 (DevOps, Dec 24 2019) Today, modernizing systems is more than simply moving technology to a new location. It requires an IT stack of a new generation of technologies and tools to […]
Cloud Security, DevOps, AppSec – The Week’s Best News – 2019.12.25
A Review of the Best News of the Week on Cloud Security, DevOps, AppSec Apple Kicks Off Public Bug Bounty Program (SecurityWeek, Dec 20 2019) Apple this week kicked off its public bug bounty program, just over four months after announcing it officially at the Black Hat cybersecurity conference in Las Vegas. Google Promises Upfront […]
Cloud Security, DevOps, AppSec – The Week’s Best News – 2019.12.18
A Review of the Best News of the Week on Cloud Security, DevOps, AppSec How Google moved from perimeter-based to cloud-native security (Google, Dec 17 2019) “a whitepaper about BeyondProd, which explains the model for how we implement cloud-native security at Google. As many organizations seek to adopt cloud-native architectures, we hope security teams can […]
Cloud Security, DevOps, AppSec – The Week’s Best News – 2019.12.11
A Review of the Best News of the Week on Cloud Security, DevOps, AppSec Google Releases Open Source Tool for Finding File Access Vulns (SecurityWeek, Dec 09 2019) Google on Monday announced that it has released the source code of a tool designed to help developers identify vulnerabilities related to file access. Top 11 posts […]
Cloud Security, DevOps, AppSec – The Week’s Best News – 2019.12.04
A Review of the Best News of the Week on Cloud Security, DevOps, AppSec HackerOne breach lets outsider read customers’ bug reports (Ars Technica, Dec 04 2019) Company security analyst sent session cookie allowing account take-over. The Next Evolution in AWS Single Sign-On (AWS News Blog, Nov 27 2019) “Today we announced the next evolution […]
Cloud Security, DevOps, AppSec – The Week’s Best News – 2019.11.27
A Review of the Best News of the Week on Cloud Security, DevOps, AppSec How to get started with security response automation on AWS (AWS Security Blog, Nov 26 2019) Security response automation is a planned and programmed action taken to achieve a desired state for an application or resource based on a condition or […]
Cloud Security, DevOps, AppSec – The Week’s Best News – 2019.11.20
A Review of the Best News of the Week on Cloud Security, DevOps, AppSec GitHub Security Lab to make open source more secure (Help Net Security, Nov 15 2019) When a researchers identifies a vulnerability in an open source project and shares the discovery with the GitHub Security Lab team, the team reports it to […]
Cloud Security, DevOps, AppSec – The Week’s Best News – 2019.11.13
A Review of the Best News of the Week on Cloud Security, DevOps, AppSec Boris Johnson deepfake endorses Jeremy Corbyn for PM (Business Insider, Nov 12 2019) Boris Johnson appeared to endorse Jeremy Corbyn for prime minister in a convincing deepfake video Business Insider Bugcrowd breaks its weekly bounty payout record (SC Magazine, Nov 08 2019) […]