Search Results for: supply chain
You searched for supply chain - DevOps.com
JFrog Extends Alliance With NVIDIA to Secure AI Software Supply Chain
JFrog and NVIDIA today announced they have expanded the integrations between their software development platforms to now include the Enterprise AI Factory, a set of frameworks and blueprints for building artificial intelligence ...
Checkmarx Surfaces Malicious Effort to Compromise Software Supply Chains
Checkmarx, this week, reported it has discovered malicious software packages that, in addition to injecting malware capable of bypassing endpoint security to exfiltrate data, also provide persistent remote access and control of ...
Cycode Adds AI Agent Teammates to Secure Software Supply Chains
Cycode, this week, added multiple artificial intelligence (AI) agents to its application security posture management (ASPM) capable of monitoring code and offering remediation suggestions. In addition, the company is adding an ability ...
Software Supply Chain Security: Navigating NIST, CRA, and FDA Regulations
There are three regulations that every software development team should be aware of: NIST Secure Software Development Framework (SSDF), the EU Cyber Resilience Act (CRA), and the FDA Cybersecurity Requirements for Medical ...
JFrog’s Software Supply Chain State of the Union 2025 Report: Trends, Threats & Actions
33,000 new CVEs in 2024. Millions of new open source packages. 10+ languages used by devs. Contending with 38 new OS packages a month. 64% low applicability ratings for High and Critical ...
North Korea’s Lazarus Group Targets Developers, Supply Chain
North Korea’s notorious Lazarus Group is using an advanced malicious implant to target cryptocurrency wallets and spreading it via legitimate GitHub profile and possibly through npm packages. The ongoing campaign, dubbed Operation Marstech ...
Typosquat Supply Chain Attack Targets Go Developers
A backdoor that impersonates a widely used database module in the popular Go programming language can give hackers control of infected systems, according to a senior threat intelligence analyst with developer-focused platform ...
Putting Your Data to Work to Protect your Software Supply Chain
In an era of increasingly complex software supply chains, organizations face unprecedented challenges in ensuring security and reliability. Dependency trees grow deeper, third-party code contributions multiply, and the risks—from vulnerabilities and misconfigurations ...
Survey Surfaces Software Supply Chain Security Gains
A survey of 106 leaders and practitioners involved in software supply chain security finds more than three-quarters of respondents (76%) work for organizations that have made software supply chain security a significant ...
Sonatype Report Surfaces Software Supply Chain Security Challenges
Sonatype today during a virtual All-Day DevOps (ADD) event shared the results of a report that finds there has been a 156% increase in the number of malicious open source packages year-over-year, ...
SpyCloud Embeds Identity Analytics in Cybercrime Investigations Solution to Accelerate Insider and Supply Chain Risk Analysis & Threat Actor Attribution
Austin, TX, USA, 10th October 2024, CyberNewsWire ...
Securing Your Code: Combating Malware in the Software Supply Chain
Malware has emerged as one of the most significant threats to modern software development, especially within open-source ecosystems. This panel will explore the rise of malware attacks on the software supply chain ...
