Hackers vs. Devs - Attacking Dev Tools and Infrastructure
RSA Conference 2024 · Track Session
In an insightful and timely talk at RSAC 2024, Ofer Maor, Co-Founder & CTO of incident response firm Mitiga, shed light on a critical shift in the threat landscape: attackers are increasingly targeting developer tools and infrastructure rather than custom application code. Maor, leveraging decades of experience spanning traditional AppSec and modern cloud incident response, presented a compelling case that the prevailing focus on preventing vulnerabilities in bespoke code often misses where real-world breaches originate. His firm’s data, revealing that only three out of hundreds of incidents over four and a half years stemmed from custom code vulnerabilities, underscored this stark reality.