GitLab and Google Cloud are collaborating to deliver AI offerings to support DevSecOps in the enterprise. - Built with Google Cloud AI, GitLab's security feature will utilize Google Cloud's foundation models for enterprise customers to identify and remediate vulnerabilities accurately. - The extensi.. read more  

Tech Data has partnered with GitLab to support the growth of application modernisation and DevOps, in response to growing market demand. - The venture will allow channel partners and independent software vendors in Tech Data's Asia Pacific and Japan region to leverage application modernisation and D.. read more  

AWS Security Hub now offers a detailed history of changes made to every finding within your cloud security posture management service. - The feature shows an immutable trail of changes, indicating who made which alterations, and when, to provide greater transparency and easier identification of susp.. read more  

Have you ever found yourself in a situation where you wanted to determine which AWS resources are missing a tag? You can accomplish this use case using custom recommendations for AWS workloads in Defender for Cloud. Microsoft Defender for Cloud can help identify which Amazon Web Services (AWS) reso.. read more  

Wondering how to use PiVPN to create a self-hosted virtual private network (VPN) for remote access to home network devices? The author explains how to set up DNS and IP addresses for PiVPN, install and configure the VPN software, back up the configuration, and troubleshoot issues. - PiVPNis a VPN s.. read more  

Microsoft has introduced a beta function to itsAttack Simulation Trainingsuite, offering a range of new features and functionality for improving the defence against phishing messages. - The new API, part of Microsoft’s Graph API suite, enables security teams to create customised attack scenarios bas.. read more  

Cloud security firm Ermetichas discovered three security flaws in Microsoft Azure API Management services that could allow malicious actors to access sensitive data or the backend services. - Two of the security flaws are server-side request forgery (SSRF) vulnerabilities, while the third is an unre.. read more  

DevSecOps integrates security practices into the software development pipeline, emphasizing security’s importance at every development stage. Achieving this level of collaboration requires not only technical expertise but also strong leadership and communication skills. Here are some practical take.. read more  

Open Source Developer Advocate at Aqua Security, discusses the role of open source software (OSS) in today's technology strategies. She debunks common myths surrounding OSS and highlights its importance in cloud-native applications and infrastructure. - She explains that OSS projects are not riskier.. read more  

The blog post discusses the centralization of the internet, specifically focusing on email services. - Many domain owners used to run their own mail servers but now rely on third-party email service providers due to the challenges of combating spam and managing increasing traffic. - Popular email se.. read more