Security

DevSecOps

DevSecOps… a little bit of education with Snyk

Somewhere along the line, someone decided to put a “Sec” in between “Dev” and “Ops”… and now it is a thing! I have historically reacted poorly to the xOps labels that have been flung around IT circles for a number of years now, but the reality is that a lot of these previous silos are […] Read More

Critical Security Issue Client Integration Plugin | vCloud Director 5.5.6 Released

Last week VMware released advisory VMSA-2016-0004 for a critical security issue found in the Client Integration Plugin which is found in versions of vCenter, vCloud Director and vRealize Automation. From going through the advisory the Client Integration Plugin does not handle session content in a “safe way” which may allow for a Man in the Middle attack or […] Read More

%d bloggers like this: