Top Ways Hackers Abuse CI/CD Pipelines and Reach Production
How Bad Actors Target the Software Delivery Process
As organizations reduce their attack surfaces with tooling and best practices, bad actors are looking for new attack vectors so they can reach mission-critical systems. One increasingly popular attack vector involves targeting the software delivery process itself by abusing CI/CD pipelines to execute attacks such as malicious code injection.
When you build and iterate on your CI/CD security strategy, it’s important to get inside the mind of an attacker who’s looking to gain access to your systems.
So how do bad actors think about CI/CD pipeline-based attack paths?
Tune in to this webinar and learn from our CI/CD security expert, Omer Gil, as he walks through:
The most common type of CI/CD-based attack — poisoned pipeline execution (PPE)
How bad actors can bypass required pull request (PR) reviews
Why bad actors prefer PPE attacks over traditional attack paths
And more!
Get the latest news, invites to events, and threat alerts
Products and Services
- AI-Powered Network Security Platform
- Secure AI by Design
- Prisma AIRS
- AI Access Security
- Cloud Delivered Security Services
- Advanced Threat Prevention
- Advanced URL Filtering
- Advanced WildFire
- Advanced DNS Security
- Enterprise Data Loss Prevention
- Enterprise IoT Security
- Medical IoT Security
- Industrial OT Security
- SaaS Security
- Next-Generation Firewalls
- Hardware Firewalls
- Software Firewalls
- Strata Cloud Manager
- SD-WAN for NGFW
- PAN-OS
- Panorama
- Secure Access Service Edge
- Prisma SASE
- Application Acceleration
- Autonomous Digital Experience Management
- Enterprise DLP
- Prisma Access
- Prisma Browser
- Prisma SD-WAN
- Remote Browser Isolation
- SaaS Security