DevOps Archives - Security Weekly

Threat Stack, Qualys, StackRox, Sysdig – ESW #177

How to Write an Automated Test Framework in a Million Little Steps, Qualys remote endpoint protection solution helps enterprises secure remote workforces, Sysdig Provides the…

Drobo Exploit, Docker Escape, SMBv3.11 – PSW #644

SANS Penetration Testing | Microsoft SMBv3.11 Vulnerability and Patch CVE-20200796 Explained, Drobo 5N2 4.1.1 – Remote Command Injection, $100K Paid Out for Google Cloud Shell…

Categories: Application Security Container Security DevOps News Paul's Security Weekly Security Research

DevSecOps / Scaling Security – Clint Gibler – ASW #100

Due to a combination of a) development teams embracing Agile and DevOps and b) that security teams are often outnumbered by developers 100:1 or more…

Categories: Application Security Application Security Weekly Asset Management Cloud Security DevOps Interview Vulnerability Management

James Adams and the News – SWN #17

Microsoft dumps legacy protocols, Whisper leaks all your secrets and ranks predators, malware developers unimpressed with Chrome 80, and James Adams from Core Security. Visit…

Categories: Active Directory Application Security Blue Team Cloud Security DevOps Encryption Endpoint Security Firewall Hardware Security Identity and Access News Penetration Testing Security Weekly News Threat Modeling Zero Trust

Guy Podjarny, Snyk – Guy Podjarny – ASW #99

Guy Podjarny (@guypod) is Snyk’s Founder and President, focusing on using open source and staying secure. Guy was previously CTO at Akamai following their acquisition…

Categories: 3rd Party Risk Application Security Application Security Weekly Compliance DevOps Identity and Access Interview

CISOs, CVE, DevOps, Gandalf – ASW #99

CVE-2020-0688 Losing the keys to your kingdom, which is why Multiple nation-state groups are hacking Microsoft Exchange servers, Revoking certain certificates on March 4 and…

Categories: Application Security Application Security Weekly Backup and Recovery Deception DevOps Encryption Endpoint Security Exploit Prevention Firewall Network Traffic Analysis News Security Operations Threat Hunting

InfoSec World Workshop: DevSecOps and Cultural Transformation – Dan Petit – ASW #98

Dan discusses his upcoming 2-day workshop at InfoSec World. The workshop is a “deep survey” into all things DevSecOps. Visit https://www.securityweekly.com/asw for all the latest…

Categories: Application Security Application Security Weekly Cloud Security DevOps Interview Security Awareness Security Training Threat Modeling

Ghostcat, Apache, Networks, Starliner – ASW #98

CVE-2020-1938: Ghostcat vulnerability in the Tomcat Apache JServ Protocol.IMP4GT: IMPersonation Attacks in 4G NeTworks demonstrates a proven insecurity on a layer above provably…

Categories: Application Security Application Security Weekly DevOps Encryption Firewall Identity and Access Network Traffic Analysis News

Citrix Hacks, RSA Sold, IBM Runs In Terror, D-List Celebrities – SWN #14

D-List Celebrities will call you for money, RSA Sold for 2.1B, IBM pulls out of RSA due to fear of COVID-19, Citrix hacks,…

Categories: Application Security Attack Simulation Bug Bounties Cloud Security Container Security Deception DevOps Encryption Endpoint Security Exploit Prevention Firewall Hardware Security Network Traffic Analysis News Security Operations Security Research Security Weekly News Threat Hunting

Kubernetes/Container Security – Ian Coldwater – PSW #640

Ian Coldwater is the Lead Platform Security Engineer at Heroku. Ian will discuss Kubernetes and container security! Visit https://www.securityweekly.com/psw for all the latest episodes! Full…

Categories: Application Security Cloud Security Container Security DevOps Interview Paul's Security Weekly

Filter By: