cloud Archives

Podcast: Uber Breach Puts Focus on Securing DevOps Secrets

November 29, 2017 Paul Roberts

The hack of Uber and the loss of information on 57 million customers is just the latest security incident stemming from what our guest Elizabeth Lawler calls “DevOps secrets” – valuable credentials, APIs and other sensitive information that often end up exposed to the public as a result of lax continuous development operations. In this Spotlight Edition* of The Security Ledger Podcast, sponsored by CyberArk, we talk with Elizabeth about how to contain DevOps secrets and secure the secret super user lurking in modern organizations: highly privileged application code.

Mirai Victim Dyn Joins Team to Take Down Android Botnet WireX

August 29, 2017 Paul Roberts

In-brief: Managed DNS firm Dyn, a victim of the Mirai botnet, got its revenge: taking part in a coordinated takedown of WireX, a botnet of compromised Android devices, according to an announcement Monday.

IoT’s Cloud Risk on Display with Flaws in Fuze Collaboration Platform

August 23, 2017 Paul Roberts

In-brief: Rapid7 said it found a number of flaws that leaked data on users of collaboration technology by Fuze. In an increasingly common finding: poorly secured cloud resources, not the handsets, were the problem.

Report: Major Upgrade, Investments Needed to Secure Connected Vehicles, Infrastructure

May 25, 2017 Ionut Ilascu

In-brief: a report by the Cloud Security Alliance calls for a bottom up remake of infrastructure to support connected vehicles and warns of more, serious attacks as connected vehicles begin interacting with each other and with connected – but insecure – infrastructure.

Boris Beckers Twitter Account was hacked.

Twitter Hack is latest to underscore Third Party App Risk

March 16, 2017 Paul Roberts

In-brief: security experts are warning about the threat posed by third-party applications that tap into prominent social media platforms like Twitter after accounts belonging to media organizations and prominent personalities were hacked and hijacked to display messages accusing Dutch and German officials of Nazi sympathies.

Episode 257: Securing Software on Wheels with Dennis Kengo Oka of Synopsys

Malicious Python Packages Target Crypto Wallet Recovery Passwords

Episode 256: Recursive Pollution? Data Feudalism? Gary McGraw On LLM Insecurity

China Calls Out U.S. For Hacking. The Proof? TBD!

Episode 255: EDM, Meet CDM – Cyber Dance Music with Niels Provos

Tag: cloud

Share this:

Share this:

Share this:

Share this:

Share this:

Recent Posts

Subscribe to Podcast