The Rietta Blog
10/11/2017
Automated Patching Will be New Reality
by Frank Rietta
How fast can you update your production web application after an update is released? The answer better be within minutes. Automated testing and deployment is the only way.
10/07/2017
Southeast Ruby Conference Recap
by Alex Piechowski
A recap on the Rietta team's experience with the Southeast Ruby conference
10/03/2017
Automate Security Scans with Continuous Integration
by Alex Piechowski
Learn how to automatically run bundle-audit and brakeman in your CI suite with an example for TravisCI.
09/18/2017
Equifax Missed Defense in Depth, Allowing a Massive Data Breach
by Frank Rietta
More than bad patch management, the weakness was Equifax's failure to design with the assumption that the front-end web server would be compromised.
05/18/2017
Troubling ISP Privacy Repeal: The Data Will be Breached
by Frank Rietta
With a green light from Congress & President Trump, your ISP may begin some really creepy business practices that endanger your family's privacy and security.
05/03/2017
Americans' Access to Strong Encryption is at Risk, an Open Letter to Congress
by Frank Rietta
The track record of data breaches demonstrates an uncomfortable truth: when sophisticated adversaries want to hack a network, they will ultimately win. With a government mandated encryption backdoor, hackers will make Americans less safe both at home and abroad.
02/28/2017
Breach Prevention for Developers Talk at Kennesaw State University
by Frank Rietta
As an information security professional, it’s critical to know something about how custom web applications are developed and the impact that has on application security.
02/22/2017
Intro to App Sec Podcast Interview
by Frank Rietta
Frank was the guest on the August 29, 2016, Intro to App Sec Episode of the Advanced Persistent Security podcast. Listen here.
01/12/2017
The MongoDB hack and the importance of secure defaults
by Frank Rietta
If you have a MongoDB installation, now would be the time to verify that it is secure. Tim Kadlec has written a must read post.