Difference between revisions of "Template:ASW112NewsMikeShema"

From Security Weekly Wiki
Jump to navigationJump to search
(Added By Paul's Craptastic PPWorks Code)
 
Line 1: Line 1:
 
===Articles===
 
===Articles===
 +
* [https://sidechannel.tempestsi.com/dll-hijacking-at-the-trend-micro-password-manager-cve-2020-8469-461477b796d8 DLL Hijacking at the Trend Micro Password Manager] updates the severity for an old vuln on the old technique of [https://www.wietzebeukema.nl/blog/hijacking-dlls-in-windows Hijacking DLLs in Windows] and gives us a chance to talk about threat models again.
 +
* [https://threatpost.com/adobe-prompts-users-to-uninstall-flash-player-as-eol-date-looms/156794/ Adobe Prompts Users to Uninstall Flash Player As EOL Date Looms] and which should have happened a decade ago. Even if you're not using Flash, there's still a relevant question here: what dependencies do your apps rely on that are already deprecated and unsupported?
 +
* [https://snyk.io/open-source-security-report/ The State of Open Source Security 2020] shows once again why software dependencies are a risk to your app.
 +
* [https://developer.apple.com/videos/play/wwdc2020/10676/ Build trust through better privacy] from Apple's upcoming iOS 14 shows an engineering approach to protecting data while [https://www.theverge.com/2020/6/22/21295475/apple-mac-processors-arm-silicon-chips-wwdc-2020 Apple is switching Macs to its own processors starting later this year] in a sign that more security engineering may be on the way as well.
 +
* [https://devops.com/microservices-vs-monoliths-which-is-right-for-your-enterprise/ Microservices vs. Monoliths: Which is Right for Your Enterprise?] is really about how well your DevSecOps culture approaches the SDLC.
 +
* [https://theresnomon.co/what-modern-ci-cd-should-look-like-e6f50594c2d2 What Modern CI/CD Should Look Like] whether you're going for microservices or a monolith.

Revision as of 04:41, 29 June 2020

Articles