My Shared Links — Week 42/2022

Xavier «X» Santolaria
3 min readOct 30, 2022

Collection of the resources and links I have found insightful and shared during week #42 of 2022.

Photo by FLY:D on Unsplash

Gartner research finds no single tool protects app security

There is no one ring to rule them all ⬇️

Overcoming the challenges of securing devops and software supply chains from malicious, unpredictable attacks with new technologies dominates Gartner’s latest Hype Cycle for Application Security. One of the most concerning insights this year’s hype cycle shed light on is that no single application security innovation can deliver comprehensive security.

Investigation Regarding Misconfigured Microsoft Storage Location

🚨 🚨 Misconfigured Microsoft endpoint resulted in the potential for unauthenticated access to some business transaction data corresponding to interactions between Microsoft and prospective customers, such as the planning or potential implementation and provisioning of Microsoft services.

The business transaction data included names, email addresses, email content, company name, and phone numbers, and may have included attached files relating to business between a customer and Microsoft or an authorized Microsoft partner.

Upon being notified of the misconfiguration, the endpoint was quickly secured and is now only accessible with required authentication. Microsoft’s investigation found no indication customer accounts or systems were compromised. They have directly notified the affected customers.

Red Hat and IBM Pledge to Bring NLP to Ansible

At the Ansiblefest 2022 conference, Red Hat and its parent company IBM announced the…

--

--