Do DevOps Teams Need a Company Attorney on Speed Dial?

In today’s regulatory and legislative environment, companies and individuals are exposed to lawsuits over security breaches, resulting in significant fines and ending careers. To err is human, and developers writing code err as often as any other humans. The industry average for programmers, in fact, is as many as 70 errors per 1,000 lines of code.
Read more
4 Comments

Bad Certificate Knocks Teams Offline

Microsoft allowed a certificate to expire, knocking the Office 365 version of Teams offline for almost an entire day.
Read more
1 Comment

Bad Certificate Knocks Teams Off Line

Microsoft allowed a certificate to expire, knocking the Office 365 version of Teams offline for almost an entire day.
Read more
2 Comments

Inside the Check Point Research Team’s …

The team sheds light on how their organization works and what they’re watching in the threat landscape. CPX 360 – New Orleans, La. – Security research teams across the industry are always on the hunt for new threats and vulnerabilities so organizations can improve their defenses. But how do these experts decide what to research
Read more
4 Comments

Password-Cracking Teams Up in CrackQ Release

The open source platform aims to make password-cracking more manageable and efficient for red teams. Security services firm Trustwave has released an open source project aimed at companies that want to provide password-cracking as a service to their security teams and red teams, the company announced today at the Black Hat Europe conference. Using the
Read more
33 Comments

An Alarming Number of Software Teams Are Missing Cybersecurity Expertise

The overwhelming majority of developers worry about security and consider it important, yet many lack a dedicated cybersecurity leader. Despite concerns over software security, many companies have not assigned a cybersecurity leader to help secure their applications — a problem that will only worsen as demand for technical security experts deepens worldwide. In data published on
Read more
48 Comments

An Alarming – and Growing – Number of Software Teams Are Missing Cybersecurity Expertise

The overwhelming majority of developers worry about security and consider it important, yet many lack a dedicated cybersecurity leader. Despite concerns over software security, many companies have not assigned a cybersecurity leader to help secure their applications — a problem that will only worsen as demand for technical security experts deepens worldwide. In data published on
Read more
81 Comments

What Security Teams Can Do Now

Knowing the methods of the attacker, as laid out in the federal indictment, allow us to prevent similar attacks. Oh, the Monday blues. You start the week moody because the weekend is over, though the feeling typically subsides once you’re in the office. But for the 106 million people with stolen data affected by the
Read more
43 Comments

Developers and Security Teams Under Pressure to Collaborate

The challenges and benefits to getting two traditionally adversarial groups on the same page. AWS re:Inforce – BOSTON – The path to secure development involves closer collaboration between the security and developer teams, a duo with a traditionally rocky relationship. Application security, DevOps, and DevSecOps were all terms frequently heard this week at Amazon Web
Read more
39 Comments

6 Ways Mature DevOps Teams Are Killing It in Security

New survey shows where “elite” DevOps organizations are better able to incorporate security into application security. 1 of 7 The automation, stability of infrastructure, and inherent traceability of DevOps tools and processes offer a ton of security and compliance upsides for mature DevOps organizations. According to a new survey of over 5,500 IT practitioners around
Read more
408 Comments