Week in review: SolarWinds hack and related attacks, life without passwords, how to make DevSecOps stick

2020-12-20 09:00

The SolarWinds supply chain attack and related hacksWhen the week before last FireEye said they've been breached by sophisticated attackers using a "Novel combination of techniques," we wondered what those were.

We didn't have to wait long - news of the SolarWinds hack and the consequent revelations about the attackers using the company's products as a stepping stone towards compromising a slew of US government agencies and other targets have revealed some of the attackers' capabilities.

How to make DevSecOps stick with developersThe main idea behind DevSecOps is to incorporate security far earlier into the software lifecycle development process.

When speed is everything, developers are often reluctant to prioritize security - so how do you make DevSecOps stick with developers?

How COVID-19 has impacted the security threat landscapeA WatchGuard report reveals how COVID-19 has impacted the security threat landscape, with evidence that attackers continue to target corporate networks despite the shift to remote work, and a rise in pandemic-related malicious domains and phishing campaigns.

News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/A9Lfq7HRt34/

#attack #devsecops #hack #solarwinds

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Solarwinds		56	33	100	74	36	243

News URL

Related news

Related vendor