Multiple tech companies, including Atlassian, JetBrains, and OKX, have issued warnings and urged users to update their software due to critical vulnerabilities that could lead to remote code execution and potential compromise of sensitive data. Security experts emphasize the need for a new approach to automation and collaboration between DevOps and security teams to address the complexity and use of CI/CD. Additionally, commentary from Nadav Lev of YL Ventures offers actionable steps for security leaders to improve the security-developer synergy. The risks associated with quick app creation using LCNC and RPA tools are highlighted, along with a 4-step process to safeguard apps during digital transformation. The Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), and the National Security Agency (NSA) have warned about the SolarWinds hackers infiltrating JetBrains TeamCity servers via a critical vulnerability enabling authorization bypass and arbitrary code execution.
🚨 Attention! We urge users of OKX wallets to update their iOS app to the latest version immediately. Earlier this month, we identified and reported a critical Remote Code Execution (RCE) vulnerability in the OKX iOS App, leading to potential compromise of sensitive data and…
The SolarWinds hackers are infiltrating @jetbrains TeamCity servers via a critical vulnerability enabling authorization bypass and arbitrary code execution, officials with the @CISAgov, the @FBI and the @NSAGov warn. #cybersecurity #infosec #ITsecurity https://t.co/BxDPfyXh85
🛡️ Security often takes a backseat in the digital transformation journey. Discover the risks associated with quick app creation using LCNC and RPA tools. Also, here a 4-step process to safeguard your apps: https://t.co/O1aPVa1ZlT #cybersecurity #infosec #technews
In this commentary, @ylventures' Nadav Lev offers four actionable steps that security leaders can take to help make the security-developer synergy a reality. #cybersecurity #infosec #ITsecurity https://t.co/oh8sOHn5P2
Complexity and use of CI/CD call for a new path to eliminate barriers between DevOps and security teams. It also demands a new approach to automation. https://t.co/o19b30cFvu #DevOps #Cybersecurity #CICD @Dynatrace
.@Atlassian Jira, Confluence, Bitbucket and macOS Companion app users are warned to update their software immediately due to four critical vulnerabilities allowing for remote code execution (RCE). #cybersecurity #infosec #ITsecurity https://t.co/uYvQIxCcSp