Seeing Inside the Vortex: Detecting Living off the Land Techniques

By: Matthew Robertson — November 11^th 2025 at 13:00

Networking infrastructure is an often-overlooked threat surface being targeted by sophisticated threat actors. Learn more about this topic.

Security – Cisco Blog

Cisco XDR Just Changed the Game, Again

By: AJ Shipley — April 28^th 2025 at 11:55

Clear verdict. Decisive action. AI speed. Cisco XDR turns noise into clarity and alerts into action—enabling confident, timely response at scale.

Security – Cisco Blog

DevOps Decoded: Prioritizing Security in a Dynamic World

By: Gogulakrishnan Thiyagarajan — October 11^th 2024 at 19:15

Integrating security into the DevOps lifecycle is essential for building secure, scalable systems. By embedding security early on, teams can mitigate risks, enhance efficiency, and ensure compliance throughout development and deployment.

Security – Cisco Blog

The State of Cloud Security Platforms and DevSecOps

By: Kate MacLean — June 18^th 2024 at 12:00

A new survey by Cisco and Enterprise Strategy Group reveals the true contours of cloud native application development and security

Security – Cisco Blog

Stay Compliant: Cisco Secure Workload Introduces State-of-the-art, Persona-based Reporting

By: Jyotsna Venkatesh — June 17^th 2024 at 12:00

Traditional workload security tools often fail to provide metrics tailored to the distinct needs of SecOps, Network Administrators, or CxOs.

Security – Cisco Blog

Cisco Builds on the CNAPP Movement to Secure and Protect the Cloud Native Application Estate

By: Kate MacLean — June 10^th 2024 at 12:00

Enterprise Strategy Group Report Identifies Crucial Requirements for Scalable Security, Multicloud Visibility, and True “Shift Left” DevSecOps

The Hacker News

DevOps Dilemma: How Can CISOs Regain Control in the Age of Speed?

By: The Hacker News — May 24^th 2024 at 10:35

Introduction The infamous Colonial pipeline ransomware attack (2021) and SolarWinds supply chain attack (2020) were more than data leaks; they were seismic shifts in cybersecurity. These attacks exposed a critical challenge for Chief Information Security Officers (CISOs): holding their ground while maintaining control over cloud security in the accelerating world of DevOps.

The Hacker News

Five Core Tenets Of Highly Effective DevSecOps Practices

By: The Hacker News — May 21^st 2024 at 11:33

One of the enduring challenges of building modern applications is to make them more secure without disrupting high-velocity DevOps processes or degrading the developer experience. Today’s cyber threat landscape is rife with sophisticated attacks aimed at all different parts of the software supply chain and the urgency for software-producing organizations to adopt DevSecOps practices that deeply

The Hacker News

AWS, Google, and Azure CLI Tools Could Leak Credentials in Build Logs

By: Newsroom — April 16^th 2024 at 13:26

New cybersecurity research has found that command-line interface (CLI) tools from Amazon Web Services (AWS) and Google Cloud can expose sensitive credentials in build logs, posing significant risks to organizations. The vulnerability has been codenamed LeakyCLI by cloud security firm Orca. "Some commands on Azure CLI, AWS CLI, and Google Cloud CLI can expose sensitive information in

The Hacker News

Code Keepers: Mastering Non-Human Identity Management

By: The Hacker News — April 12^th 2024 at 11:13

Identities now transcend human boundaries. Within each line of code and every API call lies a non-human identity. These entities act as programmatic access keys, enabling authentication and facilitating interactions among systems and services, which are essential for every API call, database query, or storage account access. As we depend on multi-factor authentication and passwords to safeguard

Naked Security