Tag: Software Supply Chain
ReversingLabs Applies AI to Better Secure Application Binaries
ReversingLabs launched a binary analysis tool that uses machine learning algorithms to identify risks before and after apps are deployed ...
Veracode Report Shines Spotlight on Massive Application Security Debt
In an analysis of more than a million applications, Veracode found 42% contained flaws that remained unfixed for longer than a year ...
OpenText Extends Tool for Auditing Source Code Using Machine Learning
OpenText updated a static analysis code auditing tool using machine learning algorithms to provide deeper insights into on-premises IT environments ...
Synopsys Report Sees Steady Application Security Gains
An analysis of the security automation practices of 130 organizations published by Synopsys suggests significant progress toward securing software supply chains ...
Lineaje Allies With Persistent Systems on Open Source Software Remediation Service
Lineaje and Persistent Systems are providing a managed service for remediating open source vulnerabilities that leverages AI technologies ...
CISA, NSA Issue Supply Chain Security Guidance Report
The NSA, ODNI and CISA have issued guidance to assist software developers and suppliers in shoring up software integrity and security ...
Survey Surfaces Software Supply Chain Security Challenges
While there is general agreement on the importance of software supply chain security, there is a significant disconnect on how to achieve that goal ...
Checkmarx Surfaces Threat to GitHub Repositories
Checkmarx reported that malicious actors have been able to compromise GitHub's Dependabot, the free automated dependency management tool for software projects ...
What DevOps Teams Should Know About Phishing and the Supply Chain
DevOps engineers are prime targets for phishing as cybercriminals look to infiltrate and disrupt the software supply chain ...
Low-Hanging Fruit, 2023 Edition: Part Two
Last time, we discussed setting up a comparative inventory system for your growing API footprint. The idea is that as security catches up to new technology deployments, enterprises will have to step ...
The Cyber Resilience Act Threatens the Future of Open Source
The EU is set to vote on the CRA July 19, 2023. Sonatype’s Brian Fox believes it’s a threat to the future of open source development ...
DigiCert Allies With ReversingLabs to Secure Software Supply Chains
DigiCert today announced it has allied with ReversingLabs to integrate binary analysis and threat detection capabilities with a code signing service it provides. Deepika Chauhan, chief product officer for DigiCert, said the ...