Collaborate Disseminate
Since 2017, I’ve reported in our annual State of the Software Supply Chain Report that the average time between an open source vulnerability being announced and subsequently exploited was three days. We saw this exploit time with Equif… Continue reading SaltStack: 20 Breaches Within Four Days
A few weeks ago, we wrote about the differences in SCA and SAST tools. While you can’t really compare the two, for most organizations, software composition analysis (SCA) is likely the best place to start. We also mentioned if you do choose … Continue reading Real Talk: What Users Really Look For in a Software Composition Analysis (SCA) Solution
OWASP Application Security Verification Standard
The post OWASP Application Security Verification Standard – Jay Durga – ASW #76 appeared first on Security Weekly. Continue reading OWASP Application Security Verification Standard – Jay Durga – ASW #76
What’s in your crypto wallet? The simple answer should be fat stacks of Bitcoin or Ethereum and little more. But if you use a hardware cryptocurrency wallet, you may be carrying around a bit fat vulnerability, too.
At the 35C3 conference last year, [Thomas Roth], [Josh Datko], and [Dmitry Nedospasov] …read more
Continue reading Side-Channel Attack Shows Vulnerabilities of Cryptocurrency Wallets
Tools in the DevOps Pipeline: Ty Sbano, Sisense
The post Tools in the DevOps Pipeline: Ty Sbano, Sisense – ASW #75 appeared first on Security Weekly. Continue reading Tools in the DevOps Pipeline: Ty Sbano, Sisense – ASW #75
Europe stands to lose €57 billion in economic activity in the first 12 months after SCA takes effect, according to a Stripe study conducted by 451 Research. The findings are based on surveys conducted with 500 qualified payment professionals at online … Continue reading Europe’s online economy risks losing €57 billion as SCA is enforced
A report says the EU will lose $64b per year once new 2FA rules go into effect, but we support Strong Customer Authentication (SCA) wholeheartedly. Continue reading Online shops fear 2FA at checkout will increase abandoned carts
Forrester recently released its “Forrester Wave Software Composition Analysis SCA for Q2 2019,” highlighting the leaders in this fast-growing category. We had a chance to sit down with three of the companies highlighted in the Wave report … Continue reading DevOps Chat: Forrester Wave Leaders Discuss SCA
PSD2 introduces a new open banking environment in Europe, bringing the promise of more innovative products and services. PSD2 is expected to dramatically increase transaction volume and thus the threat of more fraud. The regulation?s technical require… Continue reading Prepare for PSD2: Understanding the Opportunities and Digital Risks
Tech giants are worried about this case and what it will mean: will data stored on servers abroad become vulnerable to government grabs? Continue reading Microsoft still refusing to hand over private email data stored in Ireland