Did you know that Xfinity regularly launches security attacks against it's own customers?
Companies take too long to patch production leaving plenty of time for threats to attack! Here's how to fix it with security-oriented Agile practices.
On 08/19/2019, a CVE was discovered on a popular Ruby gem called Rest-client. Although caught quickly, this could raise the case of 2FA being a requirement for Package Manager accounts like Rubygems and NPM.
Utilizing two factor authentication, strong passphrases, password managers, and NIST standards; private company accounts can remain secure. Cover your assets!
On GitHub, you can enable branch restrictions allowing only certain users, teams, or apps to be able to push to a protected branch.
Recent Drifting Ruby Episode #183 interview with Frank Rietta, Web Application Security Architect.
Frank will be presenting Applying Agile and Security in Software Development at the IS General Speaker Series #3 on 2/28/2018 at KSU in Marietta.
Prevent certificate fraud and boost your TLS security in 5 minutes using this simple standardized DNS entry.
Stay on top of vulnerabilities by automating security scans with workflow schedules.
PCI compliance 3.1 and 3.2 no longer allow for SSL/Early TLS. Upgrade now to ensure your company remains compliant with the changes that start June 30, 2018.