#1744438: How Modern Attack Paths Cross Code, Pipelines, and Cloud
| Description: |
Automated pipelines, AI-assisted coding, and cloud-native architectures let your team ship features in minutes. But they also create a massive, interconnected blind spot. Modern attackers don't just look for single vulnerabilities anymore. They chain together minor weaknesses across your code, CI/CD pipelines, and cloud infrastructure to create lethal, multi-stage attack paths. The worst part? Your traditional AppSec tools are blind to them. Join Wiz AppSec and Cloud Security experts Mike McGuire (former software developer turned security strategist) and Salman Ladha (veteran of Auth0, Okta, and GitLab) for an executive briefing to uncover the three most dangerous, cross-lifecycle attack patterns threatening modern software: Dependency and software supply chain attacks that weaponize vulnerable or malicious open-source packages Infrastructure-as-code and pipeline misconfigurations that allow attackers to pivot from code into cloud environments Secrets and identity exposures that grant attackers privileged access to production systems Stop drowning in isolated alerts that don't tell you what is actually exploitable. Drawing on their deep backgrounds at the intersection of developer experience and enterprise security, Mike and Salman will show you how to connect the dots across your entire software lifecycle, map real-world attack paths, and prioritize the exact risks attackers are actively hunting. |
|---|---|
| More info: | https://thehacker.news/top-attack-paths-appsec?_m=3n%2e009a%2e4021%2eei0ao46hrm%2e32qq |
| Date added | July 4, 2026, 7:19 p.m. |
|---|---|
| Source | TheHackerNews |
| Subjects | |
| Venue | July 4, 2026, midnight - July 4, 2026, midnight |
