This week's articles
A Recipe for Scaling Security
There are vastly more engineers at Google dedicated to creating and maintaining new products than there are security engineers working to secure products. For this reason, Google security has to focus on operating at scale and find ways to make meaningful security improvements across Google's vast portfolio of services.
#strategy
Azure Attack Paths
Post shedding some light on known attack paths in an Azure environment.
#attack
#azure
Kubernetes Scheduling And Secure Design
Having a security-oriented scheduling strategy can help to reduce the overall risk of workload compromise in a comprehensive security design. If critical workloads are separated at the scheduling decision, the blast radius of a compromised pod is reduced.
#attack
#defend
#kubernetes
Forging signed commits on GitHub
A bug in an internal GitHub API that allowed attackers to trick the internal API into signing commits as any user.
#attack
#ci/cd
|