Friday, August 23, 2019
  • Browser Push Notifications: Useful Feature Exploited by Deceptive Marketers
  • Breach at Hy-Vee Supermarket Chain Tied to Sale of 5M+ Stolen Credit, Debit Cards
  • 2019 Data Breaches: On Track to Be the Worst Year
  • Hosted RADIUS
  • BEC Attacks: How CEOs and Executives are Put at Risk

Security Boulevard

The Home of the Security Bloggers Network

Community Chats Webinars Library
  • Home
    • Cybersecurity News
    • Features
    • Industry Spotlight
    • News Releases
  • Security Bloggers Network
    • Latest Posts
    • Contributors
    • Syndicate Your Blog
    • Write for Security Boulevard
  • Webinars
    • Upcoming
    • On-Demand
  • Chat
    • Security Boulevard Chat
    • Marketing InSecurity Podcast
  • Library

  • Analytics
  • AppSec
  • CISO
  • Cloud
  • DevOps
  • GRC
  • Identity
  • Incident Response
  • IoT / ICS
  • Threats / Breaches
  • More
    • Blockchain / Digital Currencies
    • Careers
    • Cyberlaw
    • Mobile
    • Social Engineering
  • Humor
DevOps Security Bloggers Network 

Home » Cybersecurity » DevOps » Study: DevOps Servers In The Wild Highlight Infrastructure Security Needs

Study: DevOps Servers In The Wild Highlight Infrastructure Security Needs

by Ben Layer on May 2, 2018

A mature DevOps practice involves applying multiple tools at different steps of the delivery pipeline, and a new study from IntSights focuses on these tools that may be open to attack on the Internet.

Each new tool added to your process can expand your attack surface area – and, in many cases, new development and delivery tools are being used without oversight from a security team. With complex tools being used in each DevOps step, potential attack vectors and the risk of compromise rapidly increase.

Under the assumption that the majority of DevOps tools are web-based, IntSights studied DevOps servers and software found accessible via the internet.

The research centered around a list of nearly 26,000 URLs and subdomains compiled by combining known DevOps tool names with the domains of different organizations, such as by searching for Jenkins automation servers under the hostname “jenkins.example.com.”

Every server that answered with a live and valid response was considered an open server and was then subjected to further investigation to determine what sort of security was present. No “fancy attack tools” were used. Only OSINT (Open Source Intelligence) tools and websites.

Are DevOps Tools Expanding Your Attack Surface?

The results show that 23.6 percent – or 5,967 out of 25,876 – of the URLs tested were accessible via the web, with a variety of access levels. In some cases, some software was totally exposed with no username and password combination.

In one example, a Jenkins server was available with multiple builds to investigate. Automated build tools often have hardcoded credentials or accidentally expose data via commands or output in log files, providing information for further attacks.

In another example, an open Elasticsearch server, which requires no authentication by default, was found. Elasticsearch is a distributed search and analytics engine (Read more...)

*** This is a Security Bloggers Network syndicated blog from The State of Security authored by Ben Layer. Read the original post at: https://www.tripwire.com/state-of-security/devops/report-devops-servers-in-the-wild-highlight-infrastructure-security-needs/

May 2, 2018May 2, 2018 Ben Layer DEVOPS, Featured Articles, security
  • ← Dispelling the Myth: How to Optimize Your Company for Both Cyber Security and Productivity
  • The Importance of Innovation in Network Monitoring →

Subscribe to our Newsletters

Get breaking news, free eBooks and upcoming events delivered to your inbox.
  • View Security Boulevard Privacy Policy

Most Read on the Boulevard

IoT Security: It’s Time Enterprises Take Responsibility
Texas Does Ransomware Bigger: 23 Local Gov’ts Attacked
Biometrics, Facial Recognition, Privacy, Security and the Law
Personality Traits: Key to More Effective Security Training?
Chinese Accounts Punted Off Twitter, Facebook for Dissing Hong Kong
Lauded Nigerian Entrepreneur may be a BEC Yahoo Boy
Biometric Security Data Breach, Critical Windows Vulnerabilities, FBI Data Harvesting
Safe-T SDP- Why Rip and Replace your VPN?
The rise of hybrid cloud poses new security challenges – are you prepared?
Fast DNS: Zone Apex Mapping & DNSSEC

Upcoming Webinars

Sep 05

Automating Container Security with AWS and Lacework

September 5 @ 2:00 pm - 3:00 pm
Sep 23

The Next Generation of Application Security

September 23 @ 1:00 pm - 2:00 pm
Oct 21

Open Source Security – Weighing the Pros and Cons

October 21 @ 1:00 pm - 2:00 pm
Nov 11

Trends in Threat Analysis

November 11 @ 1:00 pm - 2:00 pm
Dec 09

Cloud Security – Keeping Serverless Data Safe

December 9 @ 11:00 am - 12:00 pm

More Webinars

Download Free eBook

7 Reasons Why CISOs Should Care About DevSecOps

Recent Security Boulevard Chats

  • Cloud, DevSecOps and Network Security, All Together?
  • Security-as-Code with Tim Jefferson, Barracuda Networks
  • ASRTM with Rohit Sethi, Security Compass
  • Deception: Art or Science, Ofer Israeli, Illusive Networks
  • Tips to Secure IoT and Connected Systems w/ DigiCert

Industry Spotlight

Side-Channel Attacks: Cyber Warfare’s New Battleground
Cybersecurity Industry Spotlight Security Boulevard (Original) Threat Intelligence 

Side-Channel Attacks: Cyber Warfare’s New Battleground

August 22, 2019 Bill Conner | Yesterday 0
Rating: How Current Cybersecurity Issues Can Affect Future Profitability
Cybersecurity Governance, Risk & Compliance Industry Spotlight Security Boulevard (Original) 

Rating: How Current Cybersecurity Issues Can Affect Future Profitability

August 21, 2019 Jody Paterson | 1 day ago 0
The Journey of Securing a Long-Tail Supply Chain
Cybersecurity Governance, Risk & Compliance Industry Spotlight Security Boulevard (Original) 

The Journey of Securing a Long-Tail Supply Chain

August 20, 2019 Greg Sim | 2 days ago 0

Top Stories

MoviePass Spills Card Info and Passwords From Unsecured Database
Application Security Cloud Security Cybersecurity Data Security Featured News Security Boulevard (Original) Spotlight 

MoviePass Spills Card Info and Passwords From Unsecured Database

August 22, 2019 Richi Jennings | Yesterday 0
Box Shield Embeds Security Controls in Document Service
Cloud Security Cybersecurity Featured News Security Boulevard (Original) Spotlight 

Box Shield Embeds Security Controls in Document Service

August 21, 2019 Michael Vizard | 1 day ago 0
Texas Does Ransomware Bigger: 23 Local Gov’ts Attacked
CISO Suite Cybersecurity Data Security Featured Governance, Risk & Compliance Incident Response Malware News Security Boulevard (Original) Social Engineering Spotlight Threats & Breaches Vulnerabilities 

Texas Does Ransomware Bigger: 23 Local Gov’ts Attacked

August 19, 2019 Richi Jennings | 3 days ago 0

Security Humor

via   the Comic Noggins of  Nitrozac  and  Snaggy  at  The Joy of Tech®

The Joy of Tech®, ‘When They Change The Coffee Lids…’

Join the Community

  • Add your blog to Security Bloggers Network
  • Write for Security Boulevard
  • Bloggers Meetup and Awards
  • Ask a Question
  • Email: info@securityboulevard.com

Useful Links

  • About
  • Media Kit
  • Sponsors Info
  • Copyright
  • TOS
  • Privacy Policy

Other Mediaops Sites

  • Container Journal
  • DevOps.com
  • DevOps Connect
  • DevOps Institute
Copyright © 2019 MediaOps Inc. All rights reserved.

WAF Signal Sciences application firewall security

Our website uses cookies. By continuing to browse the website you are agreeing to our use of cookies. For more information on how we use cookies and how you can disable them, please read our Privacy Policy.