
LastPass revelations: BIG lessons for DevSecOps teams
Why was an engineer allowed to access critical keys from a home computer? "DevOops."
Read More about LastPass revelations: BIG lessons for DevSecOps teamsWhy was an engineer allowed to access critical keys from a home computer? "DevOops."
Read More about LastPass revelations: BIG lessons for DevSecOps teamsBeep, boop; hope, hype: Generative AI isn't ready for prime time. So don't play games with your software development
Read More about Lessons from ChatGPT, Bing AI, Bard and Copilot: Chatty AI is just a toyResearcher Eaton Zveare discloses massive back door in Toyota web app exploiting a JsonWebToken used for authentication
Read More about Leaky app gives researcher 'total, global control' over the Toyota supplier networkThe Log4Shell vulnerability is considered to be one of the most significant software bugs in recent years, because of its severity, pervasiveness and long-lasting impact on organizations.
Read More about Lessons from Log4Shell: 4 key takeaways for DevSecOps teamsMachine learning can be a cognitive crutch, causing code vulnerabilities. Use with extreme caution!
Read More about GitHub Copilot’s ML ‘Code Brushes’: Ready for a Bob Ross ‘happy little accident’?...
Read More about DraftKings fantasy? How YOU can prevent credential stuffing attacksAlphabet’s DeepMind brings us AlphaCode — another AI code-generating parlor trick. And, just like its large language model cousins, it can spit out buggy code.
Read More about Ahoy! More insecure code washes ashore with AlphaCodeConversational AI language model ChatGPT can write code. But is it any good?
Read More about ChatGPT: Parlor trick or Stack Overflow replacement?Read More about Meta’s GDPR fine: Why your DevOps needs red teaming
A rash of small businesses on Facebook found their accounts locked after being hacked. And it’s impossible to contact Meta to get the problem fixed.
Read More about Your support must scale: Don’t be like Meta, dev teamsGitOps can help control configuration drift and enable your infrastructure security to shift left, for starters. Here are four ways it can enable better software security.
Read More about 4 ways GitOps can help secure your software pipelineWithin the space of a few days, both Google and Apple have suffered huge legal challenges.
Read More about Track this: Apple, Google hit with BIG privacy law claimsDropbox was hacked last month. The company has now revealed more details — and there are some big surprises.
Read More about Dropbox reveals hack: What DevOps can learn from itOnce again, Microsoft is under fire for shipping a service that can easily be misused for DDoS attacks.
Read More about Reflection attacks: Don’t be part of the problemAfter two decades of raising awareness about the big problems in application security, the Open Web Application Security Project (OWASP) stands at a crossroads.
Read More about OWASP at a crossroads: Founder Mark Curphey's call for relevance in the age of DevSecOpsGet your 14-day free trial of Spectra Assure
Get Free TrialMore about Spectra Assure Free Trial