September 28, 2022

DevOps teams: BGP security is BAD. But you can fix it

Border Gateway Protocol’s security is laughable — but there are things you can do to mitigate the risks.
September 22, 2022

Rust finds its mojo: Move forward to memory-safe code

It’s confirmed: The Linux kernel will have Rust support soon. Linus Torvalds and Mark Russinovich say the time is now if you want to memory-safe code.
September 15, 2022

Why Twitter security sucks: Half of staff has PII access

Twitter’s former head of security, Peiter “Mudge” Zatko (pictured), has some damning things to say about the service’s DevOps security — or lack of it.
September 14, 2022

OpenSSF's npm best practices: A solid first step for software supply chain security — but trust issues remain

Here's what you need to know about the new OpenSSF npm security best practices.
August 26, 2022

5 reasons to stop blaming developers for software security fails

It's counterproductive to blame developers for software security woes. Here are five reasons why.
August 18, 2022

Just for devs: Best of Black Hat and DEF CON

Hacker summer camp is BACK, baby.