Cybersecurity
Security over the total application lifecycle: Understanding assets, threat models
"In most cases, it’s easier and more efficient to have a pipeline run when a change is detected in a key component"
Cybersecurity
US Agencies given two weeks to patch 100+ exploited vulns -- but who's forcing compliance?
It took TWO YEARS for all agencies to meet an earlier 45 day deadline
Cybersecurity
Over 30,000 GitLab servers still vulnerable to CVSS 10, exploited pre-auth RCE bug
Patch, patch, patch
Cybersecurity
Tips on building an actual Zero Trust environment in a complex hybrid world
"Building the muscle" and software-defined micro-segmentation
Cybersecurity
Hiring a CISO (or want to be one?) Know you this…
"Too often security teams makesa lot of noise when things are wrong, but disappear when things are going well"
Cybersecurity
GCHQ director warns on "over-militarising the cyber domain"
"There is real danger of over-militarising the cyber domain..."
Cybersecurity
Darktrace slumps after analyst slating on R&D
"We are not 100% convinced that being first to market and having great sales and support is enough..."
Cybersecurity
The SolarWinds hackers are back -- now they're targeting resellers, cloud providers, and MSPs
Is Active Directory the problem here?
Cybersecurity
Accenture customers hit in wake of consulting giant's ransomware attack
"Our clients have experienced... breaches of systems and cloud-based services"
Cybersecurity
Securing CI/CD pipelines: Protecting your assets
"The CI/CD pipeline is the ultimate delivery vehicle..."
Cybersecurity
Four US wastewater plants hit by ransomware (Windows 7 one culprit...)
Hackers encrypting sh*t systems; literally.
Cybersecurity
European Azure customer hit by record 2.4 Tbps DDoS attack
Microsoft shrugs off attack