Security News > 2020 > December > Week in review: SolarWinds hack and related attacks, life without passwords, how to make DevSecOps stick

Week in review: SolarWinds hack and related attacks, life without passwords, how to make DevSecOps stick
2020-12-20 09:00

The SolarWinds supply chain attack and related hacksWhen the week before last FireEye said they've been breached by sophisticated attackers using a "Novel combination of techniques," we wondered what those were.

We didn't have to wait long - news of the SolarWinds hack and the consequent revelations about the attackers using the company's products as a stepping stone towards compromising a slew of US government agencies and other targets have revealed some of the attackers' capabilities.

How to make DevSecOps stick with developersThe main idea behind DevSecOps is to incorporate security far earlier into the software lifecycle development process.

When speed is everything, developers are often reluctant to prioritize security - so how do you make DevSecOps stick with developers?

How COVID-19 has impacted the security threat landscapeA WatchGuard report reveals how COVID-19 has impacted the security threat landscape, with evidence that attackers continue to target corporate networks despite the shift to remote work, and a rise in pandemic-related malicious domains and phishing campaigns.


News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/A9Lfq7HRt34/

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Solarwinds 45 1 84 103 43 231