Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

In 2024 threat actors were trying to abuse GitHub even more severely than before. There were detected thousands of “ghost accounts” spreading malware. Hackers were also trying to succeed in their malware campaigns using not only repositories but also comments. Moreover, multiple organizations that store their source code on GitHub have experienced data leakage and data breaches. Among those companies are The New York Times, Mercedes Benz, Ultralitics, etc.

In 2024 threat actors were trying to abuse GitHub even more severely than before. There were detected thousands of “ghost accounts” spreading malware. Hackers were also trying to succeed in their malware campaigns using not only repositories but also comments. Moreover, multiple organizations that store their source code on GitHub have experienced data leakage and data breaches. Among those companies are The New York Times, Mercedes Benz, Ultralitics, etc.

Let’s move on with our research on the DevOps threat landscape in 2024. Let’s see which security incidents and vulnerabilities GiLab users faced in the previous year. In 2023, GitLab reported 76 incidents on their Status page, this year the number of incidents grew by almost 21% and compiled 96 incidents in total.

The year 2024 is over, so it’s time to sum up what threats were the most dangerous for DevOps and PMs. Outages, degraded service performance, vulnerabilities, cyberattacks, ransomware – all of those were appearing in media headlines all year round. Thus, for the third year in a row, we’ve decided to analyze incidents related to Git hosting services, like Azure DevOps, GitHub, GitLab, and Atlassian. Our first article in a DevOps threat landscape series is dedicated to Azure DevOps.

Over the years, one question seems to come up again and again for QA professionals and testers: “How can we manage test cases efficiently?” It is a challenge that teams across the world face every day, and it is critical to address for successful software development. While we might joke about gathering hundreds of testers in one room to debate the answer, the reality is that testers rarely have time for such discussions.