The attackers who pulled off the recent breach of continuous integration and continuous delivery (CI/CD) platform maker CircleCI got in by compromising an engineer’s laptop with...
Popular DevOps platform CircleCI has blamed an attack that successfully planted malware on an internal engineer’s laptop for a recent security breach. The attack, acknowledged on January 4, prompted...
As companies undergo the shift to Kubernetes, security must be considered throughout the entire data lifecycle for IT teams who are constantly facing potential data breaches, delays, and...
DevOps is a staple at every forward-thinking organization these days. The agile development and release formula helps companies address customer issues and marketplace innovation demands quickly. However, DevOps...
GitLab has fixed a remote code execution vulnerability (CVE-2022-2884) affecting the Community and the Enterprise Edition of its DevOps platform, and has urged admins to upgrade...
GitLab released the results of its annual DevSecOps survey which highlights the continued prioritization of security and compliance, investment in toolchain consolidation, and the ongoing impacts of rapid...
Open source DevOps platform Jenkins is warning users of unpatched security vulnerabilities impacting more than a dozen plugins. A leading open source automation server, Jenkins provides thousands of...
60% of IT and security leaders are not confident in their organization’s ability to ensure secure cloud access, even as adoption continues to grow across a...
Data monitoring and search vendor Splunk patched a code execution vulnerability in its Splunk Enterprise deployment server and is – belatedly, according to some – promising to back-port...
API insecurity is responsible for between 4.1% and 7.5% of cybersecurity incidents, according to a new study. The study, conducted by the Marsh McLennan Cyber Risk...
Recent Comments