Developers find themselves in hackers’ crosshairs

Archive for September, 2015

Developers find themselves in hackers’ crosshairs

Posted by

CSO: Developers find themselves in hackers’ crosshairs

Attackers have long targeted application vulnerabilities in order to breach systems and steal data, but recently they’ve been skipping a step and going directly after the tools developers use to actually build those applications.

Strategist with IT risk management firm CBI, J. Wolfgang Goerlich, explains why the recent spate of attacks on Apple’s development tools are notable. “The number of OS X computers continues to raise in the enterprise environment. Few organizations are considering Macs from a security perspective as the numbers have long been small and most security controls are Windows-based,” he says.

“These types of attacks – infecting the compiler – used to be considered a potential threat by high security governmental organizations. You would be considered paranoid to present such a scenario as something that could impact the general public. And yet here we are,” says Yossi Naar, co-founder of Cybereason, a provider of breach detection software.

If these types of two-stage attacks are no longer threats only to the paranoid, and enterprise development environments are targeted, what does this mean for enterprises trying to ensure they are developing and deploying secure applications.

“From a development perspective, the best practices in continuous integration and deployment would have prevented the attack against Apple’s App Store,” says Goerlich.

Read the rest at http://www.csoonline.com/article/2987237/application-security/developers-find-themselves-in-hackers-crosshairs.html

Friday Books and Talks 09/25/2015

Posted by

Chaotics
by John Caslione, Philip Kotler

As the fallout from the financial meltdown of 2008 grows progressively worse, companies, industries, and entire markets cling precariously to life or have ceased to exist altogether. And the turbulence may not be over anytime soon. Here, noted business strategists Kotler and Casilone argue that these troubled times are not an aberration, but the new face of normal. Chaotics teaches how to be prepared for –– and thrive in –– this New Age of Turbulence.