Idan Plotnik
@idanplotnik
Followers
1K
Following
1K
Media
37
Statuses
752
@ApiiroSecurity Your AI AppSec Engineer. Built for Enterprise Security.
New York
Joined November 2014
โ
Checklist for evaluating, implementing & operationalizing an Application Security Posture Management (#ASPM). Spoiler ๐ Not all ASPMs are created equal. โ๏ธ https://t.co/uUn85flf4k
#appsec #devsecops #RiskManagement #supplychain
apiiro.com
Download this ASPM checklist to get the 17 core components to look for in an ASPM solution to improve your AppSec efficiency and reduce application risk.
0
0
0
โLook how many I killed with my own hands! Your son killed Jews!โ Listen to a phone call of a Hamas terrorist calling home, bragging about how many people he massacred. The whole world needs to hear this.
7K
9K
18K
Hi @BlackHatEvents - I was shocked to discover that one of your Cyber Security Trainer and Review Board Members is also an antisemitic, a terror supporter who publicly denies Hamas Terror acts. Please remove @Voulnet from his role immediately!
140
245
1K
Hi UN Secretary General @antonioguterres. Did this place also not happen in a vacuum? Asking for 6 million friends โฆ
1K
3K
10K
ืื ืืืืข ืื ืืคืืง ืืช ืืกืจืืื ืืื ืืื ืืื ืืืืื ืืืง! ืืืื ืืืกืจ ืฉืืขืืจืชื ืืืจ ืฉื ืื, ืื ืืคืชืจืื: ืฆื"ื ืืืื ืืืืจ ืขืจืืืช!
335
2K
7K
Over 600 Israelis murdered in the darkest day of modern Israelโs history. Stand with Israel, stand with justice ๐ฎ๐ฑ
981
3K
7K
AppSec revolutionized 1. Automate compliance 2. Prioritize & remediate your alert backlog 3. Trigger contextual threat models 4. Tigger contextual pen-testing 5. Prevent with contextual developers guardrails 6. Dynamically assess your application risk ONE #ASPM platform ๐
๐ Consistently tracking and addressing material code changes is crucial for AppSec and complianceโespecially for highly regulated organizations. ๐ฆ ๐ Learn what it takes to automate material change detection at scaleโwithout slowing down developers.
0
0
1
ASPM: Accelerating Development And Business Velocity While Reducing Risks https://t.co/fB6QVz9Zwe Written by @idanplotnik of @ApiiroSecurity
0
1
1
Finally! @ApiiroSecurity in 1 min ๐ ๐ช ๐ฅ We secure your development and delivery to the cloud! We are the #AppSec heroes ๐ #devsecops #riskassessment #softwaresupplychainsecurity #cloudsecurity #developertools #context #development #cloud #softwaretesting
0
0
3
Apiiro in 1min โค๏ธ๐๐ช
Secure your development and delivery to the cloud. Proactively identify, fix, and prevent risks in your modern applications and software supply chains with Apiiroโs Cloud Application Security Platform. ๐๐๐ Learn more at https://t.co/bYcGvx4pR4.
1
0
1
Application Security Posture Management (#ASPM) is redefining how organizations effectively reduce application risk at scale ๐ @ApiiroSecurity = ASPM + AST + SBOM + Software Supply Chain Security Download the newย @Gartner_incย report for free
0
0
0
Join Apiiro, @Bugcrowd, and @SecCodeWarrior tonight for a ๐ธ martini, ๐ฅ Manhattan, or your beverage of choice at one of San Francisco's oldest cocktail bars. Cheers! Register here: https://t.co/VUk7RCmcN3
1
2
5
This is going to change the #AppSec industry ๐ฅ U can understand your app architecture & attack surface by asking any Q across code components, pipelines, security signals 3rd-party/native tools, changes over time, dev knowledge, business impact, risks & their connections ๐ฎ
๐ Introducing the Risk Graph Explorer! ๐ Query all code components, their connections, business impact, and risks across your applications and software supply chains โ in a matter of seconds andย limited only by your imagination. ๐ต๏ธ https://t.co/IvSiupTWxA
1
0
3
The plot thickens - another typosquatting attack revealed. The package - https-rot, still present on PyPI. Same MO, code and author is related to pywz by realizing GitHub clique. https://t.co/C4A6ji5YAj
apiiro.com
The Apiiro AI engine discovered a malicious Python package that is currently presented on the python PyPI package management portal.
1/ Apiiroโs AI Engine discovered yesterday a software supply chain attack, a malicious package in @pypi package manager, which was uploaded on Dec 2nd & targeting Windows users. Once installed, the package pywz, is decoding a base64 string & executing the decoded Python code
0
3
4
AppSec Heroes, great job! ๐๐ช @ApiiroSecurity's AI Detection Engine discovered yesterday a Software Supply Chain attack. A malicious package in @pypi package manager was uploaded on Dec 2nd. Tech details ๐ #AppSec #DevSecOps #softwaresupplychain #opensource #riskmanagement
3/ We were able to locate 11 @github accounts with repositories that install this malicious package. We notified PyPI about the malicious package and GitHub about the malicious repositories and the suspicious accounts. Technical details ๐
0
0
4