Attacking and Defending Supply Chains - How We Got Admin in Your Cloud

Explore the vulnerabilities in software supply chain services and learn effective defense strategies in this 44-minute conference talk from Security BSides San Francisco. Delve into how reference architectures of commonly used supply chain services can lead to security breaches, including secrets exfiltration, lateral movement, and privilege escalation in production environments. Gain valuable insights on best practices to mitigate these risks and strengthen your cloud security posture. Presented by Mike Ruth, this session offers a comprehensive look at both attack vectors and defensive measures in the realm of supply chain security.

BSidesSF 2024 - Attacking & Defending Supply Chains. How we got Admin in your Cloud,... (Mike Ruth)