29 min listen
Binary Planting, GitLab, and DevOps Pipelines - ASW #89
Binary Planting, GitLab, and DevOps Pipelines - ASW #89
ratings:
Length:
40 minutes
Released:
Dec 18, 2019
Format:
Podcast episode
Description
Binary Planting with the npm CLI is another way to describe one of our favorite attacks, GitLab Doles Out Half a Million Bucks to White Hats, Speculation & leakage: Timing side channels & multi-tenant computing from AWS re:invent. A great talk from a the perspective of a threat model where such attacks are a critical part of the threat model, How can we integrate security into the DevOps pipelines? By picking from many of the great resources in this article, Go passwordless to strengthen security and reduce costs -- and design your app to support these types of workflows, including account recovery. Visit https://www.securityweekly.com/asw for all the latest episodes! Show Notes: https://wiki.securityweekly.com/ASWEpisode89
Released:
Dec 18, 2019
Format:
Podcast episode
Titles in the series (100)
Bitcoin, Salon, Oxford Comma Dispute, and Amazon - Application Security Weekly #6: In the news, Lenovo warns of critical Wifi vulnerability, Russian nuclear scientists arrest for Bitcoin mining plot, remote workers are outperforming office workers, & more on this episode of Application Security Weekly! Full Show Notes: ... by Application Security Weekly (Video)