DevOps combines culture, skills and tools nicely. But how does security fit in?
We answer this question by keeping our eyes on both — whether it's DevSecOps or SecDevOps, it's about integrating security into DevOps workflows as soon as possible. Find the latest DevOps security trends and challenges in the articles below.
Broken input validation in SUDO – From sandwiches to death spirits
January 29, 2021, 8:44 pm
Developers
C
C++
Linux
Case study
A newly discovered critical vulnerability in sudo allowed anyone to get root. The cause? Poor input validation.
Read more
Incident response: preparing for the unknown
June 18, 2020, 9:40 pm
Leaders
Nobody is immune to security breaches. Preparing for incident response is critical - let's look at the best practices.
Read more
The SMBGhost that makes you WannaCry again
June 10, 2020, 6:53 pm
Developers
C
Case study
Another critical vulnerability in SMB is taking the world by storm. But what caused it, and why is it so devastating?
Read more
Security misconfiguration exposes Microsoft clients’ data
May 20, 2020, 10:00 pm
Developers
Leaders
Case study
Small mistakes with a disastrous consequence: security misconfigurations are low hanging fruit for the dark side.
Read more
CVSS: measuring the unmeasurable
May 14, 2020, 3:03 am
Developers
Leaders
Let's look at the Common Vulnerability Scoring System (CVSS) and how it can help you in vulnerability management.
Read more
NIST password standards
April 2, 2020, 2:02 pm
Developers
Leaders
Testers
Password policy is an essential building block of authentication. Surprisingly, best practices are a moving target here.