DevOps

Users of the Apache Struts are urged to update to its latest version after security researchers uncovered a critical remote code execution (RCE) vulnerability in the web application development framework.

How can DevOps — complemented with multilayered security solutions — align with the GDPR’s mandate of data protection by design and default?

Cloud security has become a significant issue as organizations increasingly move their workload to the cloud. A misconfigured cloud can leave organizations vulnerable to attacks.

With a large number of businesses starting to move toward the hybrid cloud model, the issue of safe cloud environments is more significant than ever.

Here are some considerations and best practices that developers, IT operations professionals, and system administrators should take into account in securing the infrastructures that power the applications they use.

An audit of source codes in certain web applications found that 85 percent contained vulnerabilities, with finance and banking-related web applications the most susceptible.

Analysis of over 1,000 open-source serverless applications revealed that 21% of them have critical vulnerabilities or were misconfigured. What does this mean for DevOps?

Security researchers reported that at least 1,000 websites running on the Magento platform were targeted via brute-force attacks to steal credit card data and install cryptocurrency-mining malware.

Security researchers discovered critical zero-day vulnerabilities in some products created by ManageEngine, a software company that creates software designed to manage IT assets.