Category Archives: supply chain

Integrating software supply chain security in DevSecOps CI/CD pipelines

Posted on by

NIST released its final guidelines for integrating software supply chain security in DevSecOps CI/CD pipelines (SP 800-204D). In this Help Net Security video, Henrik Plate, Security Researcher at Endor Labs, talks about this report, which provides acti… Continue reading Integrating software supply chain security in DevSecOps CI/CD pipelines

98% of businesses linked to breached third parties

Posted on by

According to the updated SEC regulations on cybersecurity incident disclosure, findings by SecurityScorecard reveal that 98% of companies are associated with a third party that has experienced a breach. It often takes months or longer for breaches to b… Continue reading 98% of businesses linked to breached third parties

Internet of Production Alliance Wants You to Think Globally, Make Locally

Posted on by
A map of the world with continents in light grey and countries outlined in dark grey. A nuber of yellow and grey circles with cartoon factories on them are connected with curved lines reminiscent of airplane flight paths. The lines have seemingly-arbitrary binary ones and zeros next to them. All of the grey factories are in the Americas, likely since IoP is currently focused on Africa and Europe.

With the proliferation of digital fabrication tools, many feel the future of manufacturing is distributed. It would certainly be welcome after the pandemic-induced supply chain kerfuffles from toilet paper to …read more Continue reading Internet of Production Alliance Wants You to Think Globally, Make Locally

NIST Releases Cybersecurity Framework 2.0: Guide for All Organizations

Posted on by

By Deeba Ahmed
The first Cybersecurity Framework (CSF) was released in 2014.
This is a post from HackRead.com Read the original post: NIST Releases Cybersecurity Framework 2.0: Guide for All Organizations
Continue reading NIST Releases Cybersecurity Framework 2.0: Guide for All Organizations

Preparing for the NIS2 Directive

Posted on by

The EU’s NIS Directive (Directive on security of network and information systems) was established to create a higher level of cybersecurity and resilience within organizations across the member states. It was updated in January 2023 to bring more… Continue reading Preparing for the NIS2 Directive

Integrating cybersecurity into vehicle design and manufacturing

Posted on by

In this Help Net Security interview, Yaron Edan, CISO at REE Automotive, discusses the cybersecurity landscape of the automotive industry, mainly focusing on electric and connected vehicles. Edan highlights the challenges of technological advancements … Continue reading Integrating cybersecurity into vehicle design and manufacturing

Updated SBOM guidance: A new era for software transparency?

Posted on by

The cost of cyberattacks on software supply chains is a growing problem, with the average data breach costing $4.45 million in 2023. Since President Biden’s 2021 executive order, software bills of materials (SBOMs) have become a cornerstone in protecting supply chains. In December 2023, the National Security Agency (NSA) published new guidance to help organizations […]

The post Updated SBOM guidance: A new era for software transparency? appeared first on Security Intelligence.

Continue reading Updated SBOM guidance: A new era for software transparency?