Explore the critical importance of DevSecOps in an era of increasing software supply chain attacks in this GOTO Copenhagen 2021 conference talk. Delve into the reasons behind the surge in cybersecurity threats and identify vulnerable points in your supply chain. Learn about specific attack vectors such as typosquatting, namespace confusion, and malicious code injections. Discover practical strategies to prevent future attacks, including eight essential rules for enhancing your security posture. Gain insights on integrating security seamlessly into your DevOps pipeline without compromising efficiency or productivity. Equip yourself with the knowledge to adapt your development practices and protect your software supply chain in an increasingly complex threat landscape.
Adapting DevOps in a World of Growing Software Supply Chain Attacks
Overview
Syllabus
Intro
What you will learn
Why is there a new wave of cybersecurity attacks?
Where do vulnerabilities enter your supply chain?
Typosquatting
Namespace confusion
Malicious code injections
How to prevent future attacks?
8 Rules
Outro
Taught by
GOTO Conferences
Related Courses
-
Bad Actors vs Our Community - Detecting Software Supply Chain Attacks
-
Secure Software Supply Chains for Python
-
Protect Yourself Against Supply Chain Attacks
-
Software Supply Chain Attacks - Understanding Risks and Prevention
-
Securing Python Projects Supply Chain
-
Supply Chain Attacks: Focusing on NPM Vulnerabilities - DevSecOps 2023
