Collaborate Disseminate
How should you track open source? It’s almost definitely in your codebase, so the question is not whether to track it but what could happen if you don’t.
The post You’re using open source software, and you need to keep track of it ap… Continue reading You’re using open source software, and you need to keep track of it
How can organizations prevent ransomware attacks? The Atlanta and Baltimore attacks prove that patch management and employee training should take priority.
The post Ransomware succeeds because targets don’t learn from history appeared first on S… Continue reading Ransomware succeeds because targets don’t learn from history
The future of secure autonomous vehicles starts today. But the auto industry has to overcome some challenges, like shifting left and building security in.
The post It’s not just autonomous cars of the future that need security appeared first on … Continue reading It’s not just autonomous cars of the future that need security
The cybersecurity executive order of 2019 is intended to boost cybersecurity skills and improve national defense against growing cyberthreats. Will it work?
The post The cybersecurity workforce executive order: Real potential or wishful thinking? appe… Continue reading The cybersecurity workforce executive order: Real potential or wishful thinking?
We sat down with some women in tech recently to find out what progress the industry’s made in achieving gender balance—and what it could be doing better.
The post Women in tech: Progress but still not parity appeared first on Software Inte… Continue reading Women in tech: Progress but still not parity
Some are concerned by the lack of GDPR fines issued by Ireland, the lead regulator for many tech giants. But the country’s taking its time for good reason.
The post Is Ireland too soft with GDPR enforcement, or just being prudent? appeared first… Continue reading Is Ireland too soft with GDPR enforcement, or just being prudent?
Insider threats in cloud computing are increasing. Reduce your exposure to both malicious and careless insider threats by securing your cloud deployments.
The post Don’t let insider threats rain on your cloud deployment appeared first on Softwar… Continue reading Don’t let insider threats rain on your cloud deployment
The 2019 Stevie® Awards have been announced. Two of our AppSec products made the final cut in the DevOps Solution category: Seeker and Black Duck OpsSight.
The post Synopsys adds two more awards to its 2019 winning streak appeared first on Softwa… Continue reading Synopsys adds two more awards to its 2019 winning streak
The state of ICS security (which protects the industrial control systems that power our critical infrastructure) is worrying. How can we start to improve it?
The post Despite ongoing warnings, U.S. critical infrastructure remains vulnerable appeared f… Continue reading Despite ongoing warnings, U.S. critical infrastructure remains vulnerable
Recent government cybersecurity initiatives assume that the federal government has a role to play in securing the IoT and critical infrastructure. Does it?
The post Feds seek to up their cybersecurity game appeared first on Software Integrity Blog.
Th… Continue reading Feds seek to up their cybersecurity game