- ByteSize
- Posts
- Push Protection Dejection, DR Inspection, and OpenStack's VMware Defection Collection
Push Protection Dejection, DR Inspection, and OpenStack's VMware Defection Collection
More tech madness: Deel spy wields an axe, Amazon shoots for the stars, and Nintendo creates a digital bouncer for its next console...
Delve’s AI agents just closed a SOC 2 audit in 19 days that should have taken months. 100s of companies are already ditching old compliance solutions and using Delve to help handle SOC 2, HIPAA, ISO, GDPR, and more. Plus, they’re giving out custom Arc’teryx jackets to anyone that gets compliant with them (more under Tool Time)…
Hey there! Welcome back to ByteSize, where we condense the chaos so you don’t have to sort through 47 open tabs and 3 Discord servers.
It's April 8th – and on this day in 1983, PepsiCo executive John Sculley accepted the presidency of Apple Computer after Steve Jobs posed the now-legendary question: "Do you want to sell sugar water for the rest of your life or do you want to come with me and change the world?" Little did either know that their partnership would eventually sour into a power struggle.
Sculley eventually kicked Jobs out of his own company, which is like hiring Gordon Ramsay to run your restaurant and then telling him his risotto sucks. That's just how business works sometimes!
Disaster Recovery: Your Provider Might Be Wearing Emperor’s New Clothes
So your multi-cloud environment is more complex than your last relationship status, and disaster recovery has become the tech equivalent of assembling IKEA furniture blindfolded. According to The Register, ransomware is now the leading cause of outages – beating out natural disasters like floods, fires, and that intern who "just wanted to see what this button does." At this point, hackers are more reliable meteorologists.
Organizations with IT-as-a-Service are particularly vulnerable because they're essentially trusting their disaster recovery to the third-party providers who think "123456" is an acceptable password. The UK's NHS discovered this the hard way when ransomware hit Synnovis, their outsourced blood pathology provider, delaying thousands of operations and appointments.
The hard-earned lesson here is this: The more homogeneous your IT environment, the easier it is to protect against disasters. It's much like how it's easier to find your way around IKEA if they only sold one type of furniture instead of 47 variations of BJÖRKSNÄS. And don't just trust your ITaaS suppliers' DR claims—verify them harder than Reddit users fact-checking an AMA. Like, actually test them.
In a world where "trust me, bro" is increasingly the corporate approach to DR, you need more than promises.
GitHub: Oops, We Leaked 30 Million Secrets, But Hey Look—AI!
"Oops!" said Github, when they revealed that over 39 MILLION secrets–API keys, passwords, tokens, etc.– were leaked in repositories during 2024. This still happened DESPITE their "Push Protection" feature being activated by default on all public repositories since February.
Why are developers still leaking secrets faster than my mom after three martinis? Because developers prioritize convenience over security during commits and accidentally expose repositories through git history—shocking revelation right up there with "water is wet." Who could have possibly seen this coming?
GitHub's response is a series of long-overdue upgrades to their Advanced Security platform, including:
Secret Protection as standalone products (finally!)
Free organization-wide secret risk assessment to check all your repos for exposed secrets
Enhanced push protection with delegated bypass controls (aka "who can break the rules")
Copilot-powered secret detection using AI to identify unstructured secrets
That last one is peak 2025 energy. We now need AI to tell us that hardcoding "Password1!" in our repo is a bad idea. What's next? An AI that reminds me my camera is still on after a Teams meeting when I start picking my nose? Wait..I'd actually pay for that.
OpenStack Says “VMware Refugees Welcome” With “Epoxy” Release
OpenStack just dropped its 31st release, codenamed "Epoxy" (because nothing says "reliable software" like being named after sticky goo). The Open InfraFoundation is positioning it as the perfect landing spot for VMware refugees fleeing Broadcom's pricing structure, which apparently now costs more per license than sending your child to private school.
They've also added hardware drivers for NetApp, Pure Storage, and Hitachi arrays to their Cinder block storage module—making it easier for organizations to keep using their expensive storage investments while changing virtualization platforms. It's like telling someone, "Yes, you can definitely practice your drum solo in your apartment at 2 AM. The neighbors won't mind at all."
The most interesting improvement is direct GPU pass-through support for Nvidia hardware, which is crucial for AI workloads where every millisecond counts. Because if your AI can't generate images of you and your ex as a Studio Ghibli character in under 2 seconds, what's even the point of technology?
While OpenStack's message is "come to our platform, the water's fine," Gartner still warns that migrations will be "long, expensive and risky"—which coincidentally is also how my doctor describes my plan to subsist entirely on energy drinks and frozen pizza.
⚙️ Tool Time
We recommend Delve.
Join hyper-growth companies like Lovable, Bland, 11x, and 100s of others using Delve.
No more manual paperwork.
No more endless technical questions.
No more compliance killing your deals.
Delve's AI doesn't just fill out forms—it understands your tech stack, integrates automatically, and handles the tedious back-and-forth with auditors.
Founders and security leaders: get back to building while their AI helps handle compliance for you.
Book a demo today. Get compliant by next Friday.
(P.S. Delve is giving out FREE Arc’teryx jackets with your company logo if you get compliant with them.)
Thanks to ByteSize reader Junior for this recommendation!
👨💻 Job Opportunities
This role is perfect for someone who gets more excited about finding vulnerabilities than Joe Rogan spots a conspiracy. Must have 5+ years experience, OSCP certification preferred, and a vocabulary of security acronyms that would make alphabet soup jealous.
Mayo Clinic needs someone to build "the most trusted generative AI and LLM-based solutions to transform healthcare" – because apparently asking WebMD isn't cutting it anymore. You'll be designing back-end services for clinical applications while simultaneously telling ChatGPT to stop diagnosing everyone with cancer.
Qualitest is seeking someone who finds Oracle databases more compelling than this season of "The White Lotus." Must have experience crafting SQL queries more complex than whatever the hell is going on in Kanye's head. If you can quickly optimize database performance and understand just enough AI to nod convincingly in meetings, Qualitest will pay you a pretty penny to work your magic. **
🛩 Industry Moves
Amazon is launching 27 Project Kuiper satellites on April 9th, beginning their 80-launch mission to build a 3,200-satellite constellation. It's Bezos basically saying to Musk: "Nice space internet you got there...would be a shame if someone came along with deeper pockets." Amazon Prime delivery really said "to infinity and beyond" and meant it literally.
Mozilla is transforming Thunderbird from "that email client your Linux friend won't shut up about" into a full communications platform with Thundermail. The expansion includes appointment scheduling, file sharing, and AI writing with local processing (because privacy!).
That crazy espionage scandal between HR tech firms Rippling and Deel we broke down last month? It gets even crazier. The alleged corporate spy, Keith O'Brien, has now admitted in an Irish court filing that Deel CEO Alex Bouaziz recruited him as a "spy” AND specifically mentioned James Bond during recruitment. O'Brien claims he was paid €5000 monthly via cryptocurrency for Rippling intel, communicated through self-deleting Telegram channels, and—when caught—took AN ACTUAL AXE to his phone on advice from Deel's lawyers.
Nintendo's next console arrives June 5th for $449 with a 7.9-inch 1080p display, 4K docked output, and mouse-like controls. New features include built-in voice chat and screen sharing—functions that have existed elsewhere since approximately the Mesozoic era. Nintendo is also offering "priority purchasing" for loyal Nintendo Online subscribers, which is pretty much velvet rope treatment at an exclusive club. "Sorry sir, are you on the list? Have you logged at least 50 hours in Mario Kart?"
Have a career move you want to share? Share it here (Unless it involves corporate espionage—in which case, please leave your axe at home.)
💽 Data Upload
Our EE community's been busy solving the real problems this week:
And we're done!
Until next time, may your uptime be longer than "The Irishman" and your incident responses faster than work retreats when someone says "let's go around the room and introduce ourselves."
Enjoyed the news? Discuss over on Experts Exchange.
Got news to share or topics you'd like us to cover? Send ‘em our way. We can’t wait to hear from you. Really.
And hey… psst… are you interested in sponsoring our newsletter and reaching a passionate, engaged community of IT professionals across the globe? Reach out here.