Sign up for our newsletter!
Stay informed on the latest DevOps news

DevOps.com

Tag: security vulnerabilities

Snyk Adds Second ASPM Tool to Portfolio

| | ai, ASPM, devsecops, ml, security vulnerabilities
Today, Snyk made available an edition of its application security posture management (ASPM) tool for assessing application risks that provides more context into how code has been written and its role within ...

OpenSSL Fiasco: What can DevOps Learn? | Elon Fires ‘50%’ of Twitter

| | CVE-2022-3602, CVE-2022-3786, Elon Musk, If life were predictable it would cease to be life—and be without flavor, layoffs, OpenSSL, RCE, redundancy, security vulnerabilities, The Long View, twitter
In this week’s The Long View: The OpenSSL project has egg on its face, and half of Twitter’s staff are for the chop tomorrow ...

A Security Vulnerability Management Guide

| | app security, CI/CD, container, container native, devsecops, security vulnerabilities, vulnerabilities
Living in a container-native world is not easy. Containers have a reputation for being a point of entry for security vulnerabilities for many organizations. In 2015, according to a research paper, over ...

Top 10 Embedded Security Vulnerabilities

| | perforce, security vulnerabilities, Top 10 embedded security vulnerabilities
Nearly all of detected security vulnerabilities can be attributed to just 10 types. Here, we discuss the most common cybersecurity vulnerabilities and offer guidance on how to mitigate their risk. Vulnerability 10: ...

Synopsys: IoT, ICS More Vulnerable to Security Exploits

| | ICS, industrial control systems, Internet of Things, IoT, security, security exploits, security vulnerabilities, Synopsys
A new report shows that internet of things (IoT) implementations and industrial control systems (ICS) are more vulnerable than most to potential zero-day exploits of the open-source protocols, common file formats and ...

Sonatype Report Spotlights Software Supply Chain Issues

| | application development, containers, report, security vulnerabilities, software development, sonatype, supply chain, survey
Most application developers today don’t write much raw code. Rather, applications developed today are created mostly by combing various modules and widgets to create a custom application. But currently there is little ...