Americas

  • United States

Asia

Europe

Oceania

Popular Topics

Topics

About

Policies

Our Network

More

HomeDevSecOpsPage 2

DevSecOps

Software Development | News, how-tos, features, reviews, and videos

Filter by
Analysis
BrandPost
Feature
How-To
Interview
News
News Analysis
Opinion
Reviews
Tip
news

Researchers warn Amazon’s AWS System Manager agent can be used as a RAT

Mitiga researchers found that the AWS SSM agent could be hijacked and turned into a remote access trojan that is difficult to detect.

Aug 04, 2023 7 mins
Hacking Hacking Hacking
news analysis

Beware of overly permissive Azure AD cross-tenant synchronization policies

A new proof of concept shows that attackers can use Azure AD CTS to leap to Microsoft and non-Microsoft application across tenants.

Aug 02, 2023 6 mins
Active Directory Active Directory Active Directory
news

Akamai unveils API Security solution to stop API attacks, detect abuse

The solution works with any API gateway, WAAP, or cloud implementation and features a managed threat hunting service.

Aug 02, 2023 3 mins
Threat and Vulnerability Management Threat and Vulnerability Management Threat and Vulnerability Management
news

SpecterOps’ open source pentesting software receives major updates

Bloodhound CE will include containerized deployment and REST APIs to help open source users with penetration tests.

Aug 01, 2023 3 mins
Penetration Testing Security Software Open Source
feature

Why API attacks are increasing and how to avoid them

Growing use of APIs give attackers more ways to break authentication controls, exfiltrate data, or perform disruptive acts.

Jul 24, 2023 20 mins
Application Security Data and Information Security Vulnerabilities
news

Enterprises aren’t betting big on API controls yet, says study

Akamai’s latest study finds organizations are not prepared for API-based attacks as most report scant controls.

Jul 18, 2023 3 mins
APIs Cloud Security
news

Fake PoC with data-stealing malware discovered on GitHub

The PoC contains a backdoor, which has broad data-stealing capabilities and can exfiltrate a wide array of data from the hostname and username to an exhaustive list of home directory contents.

Jul 14, 2023 4 mins
Malware GitHub Vulnerabilities
news

JFrog adds new DevOps capability for vetting external packages

JFrog Curation vets and blocks infected open source or third-party packages before they enter development.

Jul 12, 2023 3 mins
Application Security Devops
news analysis

Malicious campaign uses npm packages to support phishing attacks

This newly discovered "dual use" campaign enables software supply chain compromise as well as phishing.

Jul 06, 2023 5 mins
Phishing Phishing Phishing
news analysis

Mission Linux: How the open source software is now a lucrative target for hackers

With the growth of Linux in cloud environments, critical infrastructure, and even mobile platforms, hackers are increasingly targeting the open source system for higher returns.

Jun 30, 2023 4 mins
Ransomware Ransomware Ransomware