Rooted in research done by cross-referencing and analyzing some of the most notorious CI/CD security breaches, such as CodeCov, SolarWinds, and PHP, this talk will present the Top 10 CI/CD risks that were distilled from the most common patterns found in these attacks.


RSA® Conference, the world’s leading information security conferences and expositions, today concluded its 31st annual event at the Moscone Center in San Francisco. The year’s event attracted over 26,000 attendees, including 600+ speakers, 400+ exhibitors, and over 400 members of the media. Throughout the week, attendees networked on the expo floor and participated in keynote presentations, track sessions, tutorials, seminars, and special events.

Several of the most pressing topics discussed during this year’s Conference included issues surrounding privacy and surveillance, the positive and negative impacts of machine learning and artificial intelligence, the nuances of risk and policy, and cybersecurity-focused innovations across crypto and blockchain.

CI/CD: Top 10 Security Risks

Conference: RSA Conference 2022

Abstract

Post a comment

Related work

efiXplorer: Hunting for UEFI Firmware Vulnerabilities at Scale with Automated Static Analysis

What We've Learned from Scanning 10K+ Kubernetes Clusters

🦝 The Top 10 List of Istio Security Risks and Mitigation Strategies

Top 10 Challenges for DevSecOps

Your Secret Files Are Mine: Bug Finding And Exploit Techniques On File Transfer App Of All Top Android Vendors

Prevent Embarrassing Cluster Takeovers with This One Simple Trick!