For
more, please go to
github.com/AndrewTetzeli
AndrewTetzeli.github.io/
sourceforge.net/projects/andrew-tetzeli/
medium.com/@a.tetzeli
AndrewTetzeliTheITProfessional.blogspot.com
AndrewTetzeli.wordpress.com
dev.to/AndrewTetzeli
hashnode.com/@AndrewTetzeli
AndrewTetzeli.postach.io
Cybersecurity
lab refuses to use cybersecurity,
gets sued by feds; lab working on DoD contracts
https://medium.com/@a.tetzeli/cybersecurity-lab-refuses-to-use-cybersecurity-11e2349f72db
A very large and top-rated
government cybersecurity center, the German Federal Office for Information
Security (BSI), has taken the
lead in taking steps to fend off another CrowdStrike-style fiasco.
The BSI's actions should have
big implications for DevOps, and not just at CrowdStrike and Microsoft.
https://dev.to/andrewtetzeli/big-implications-for-devops-german-bsi-developing-measures-to-prevent-another-crowdstrike-style-fiasco-100g
Student warned of vulnerability
in Mobile Guardian MDM weeks before cyberattack -- warning was not heeded
https://andrewtetzeli.hashnode.dev/student-warned-of-vulnerability-in-mobile-guardian-mdm-weeks-before-cyberattack
CrowdStrike’s DevOps failure leads to litigation: Challenges and Changes in Development
https://medium.com/@a.tetzeli/crowdstrikes-devops-failure-spawns-litigation-fdb5100d7717
"Google this", federal court
tells Google, in declaring it an illegal monopoly -- Antitrust
https://andrewtetzeli.postach.io/post/google-this-federal-court-tells-google
DARPA's TRACTOR pull from C to
Rust
https://andrewtetzeli.substack.com/p/yet-more-reasons-to-learnuse-rust
More AI, please. It can aid
coding and is not a threat -- survey
https://dev.to/andrewtetzeli/more-ai-please-it-can-aid-coding-and-is-not-a-threat-survey-3029
Another day, another data
breach: Now Cencora. HIPAA, PII compromised
https://andrewtetzeli.hashnode.dev/another-day-another-data-breach-now-cencora-hipaa-pii-compromised
AWS vs. DevOps
https://dev.to/andrewtetzeli/aws-vs-devops-1p82
Redesigned malware revived on
Android
https://medium.com/@a.tetzeli/redesigned-malware-revived-on-android-dc72d327be42
Challenges
and Solutions I've Found in
Managing Inheritance Hierarchies in Object-Oriented Programming
https://andrewtetzeli.hashnode.dev/challenges-and-solutions-ive-found-in-managing-inheritance-hierarchies-in-object-oriented-programming
How the CrowdStrike Perfect Storm
formed
https://andrewtetzeli.com/crowdstrikeperfectstorm.html
A Primer on DevOps:
Or, How to Avoid a CrowdStrike-style Meltdown
https://andrewtetzeli.com/devops.html
The
Curious Case of CrowdStrike vs. DevOps:
https://dev.to/andrewtetzeli/crowdstrike-vs-devops-39
DevOps Issue:
A Bug in Cybersecurity Software
CrowdStrike Causes Disruptions
https://andrewtetzeli.com/cybersecuritybug.html
Security tip: base64 passwords
https://andrewtetzeli.com/base64passwords.html
The importance of DevOps: a set
of
practices and
tools as methodology in improving, streamlining, and securing software
development and output.
Report
Surfaces Thousands of Potential Vulnerabilities in GitHub Workflows --
andrewtetzeli.substack.com
The costs of inadequate security:
"CDK ransom money goes through extensive money laundering schemes
before reaching hackers. CDK Global likely paid a hacker group around
$25M to address the cyberattacks that led to significant software
outages across the car dealer industry, CNN reported."
Besides
losses to CDK of $600M+, "dealerships lost 56,200 new-vehicle sales and
more than $1 billion between June 19 and July 15 because of the CDK
outages."
What else? Again?
"Rite Aid is a defendant in
several lawsuits stemming from a separate
data breach in May 2023.
The earlier breach exposed
patient names, dates of birth, addresses,
prescription data, and insurance data for more than 24,000 customers.
Rite Aid has previously reported breaches in 2015, 2017, and 2018."
Rite Aid says breach exposes sensitive details of 2.2
million customers
Et tu, Linux?
"Critical
OpenSSH vulnerability threatens millions of Linux systems"
Onward and upward
GitLab’s DevSecOps report highlights AI challenges: a
complex landscape of software development highlighting disparities
between executive perceptions and developer realities
Now,
faster:
"Computer scientists have written a network flow
algorithm that computes almost as fast as is mathematically possible."
New network flow algorithm tackles the question of how
to achieve the
maximum flow in a network while simultaneously minimizing transport
costs.
"An exegesis
of the most ubiquitous
piece of code on the web."
Markdown is not just a piece of software. It’s also a
markup language — it’s used to format plaintext,
which then appears the way you want it to
Don't use an app when the
website will do:
"Cleverly
hidden spyware" — Shopping app Temu is “dangerous malware,” spying on
your texts, lawsuit claims
From the
why-to-always-use-adblockers department, and no, Mac users are not
exempt:
Mac users served info-stealer malware through Google
ads
Anti-social media:
How small claims court became Meta's customer service
hotline: People are using the courts in a last-ditch attempt to recover
their
accounts
Cybersecurity
is not a
'cost' of doing business — Not having adequate cybersecurity costs
one's business dearly:
Car dealerships hit with massive computer system outage
Follow-up to the
car-dealership software attack: $600M in losses
Having serious, layered preventive measures in place
is the key to cybersecurity.
Also important is having backup redundancy and
recovery measures in place well ahead of time.
When 911 itself has an
emergency:
Statewide 911 Outage Was Caused By 911 Vendor's
Malfunctioning Firewall
|
