Blogs about Best Practices
It’s Time to Shift Security Left with These Best Practices
This article will review what Shifting Security Left means, the benefits, and why you should implement it in your DevOps process.
8 Best Practices in Cyber Supply Chain Risk Management to Stay Safe
Discover the four types of threats to business software supply chains and the 8 best practices in risk management to help keep them secure.
LastPass Software Supply Chain Attack: What Happened and Tips to Protect Against Similar Attacks
LastPass disclosed that an unauthorized party had gained access to portions of the LastPass developer environment. An attacker gained access to developer account credentials and used them to exfiltrate portions of their proprietary source code.
Vulnerable GitHub Actions Workflows Part 2: Actions That Open the Door to CI/CD Pipeline Attacks
We examine a bug we’ve found in a popular third-party GitHub action and how it could lead to your SDLC pipeline being attacked. Read more to improve GitHub security and secure your software supply chain.