Collaborate Disseminate
The Linux Foundation has announced OpenPubkey, an open source cryptographic protocol that should help boost supply chain security.
The post Linux Foundation Announces OpenPubkey Open Source Cryptographic Protocol appeared first on SecurityWeek.
Continue reading Linux Foundation Announces OpenPubkey Open Source Cryptographic Protocol
In this Help Net Security interview, Gaspard de Lacroix-Vaubois, CEO at Skypher, talks about the implementation of security questionnaires and how they facilitate assessments and accountability across all participants in the technology supply chain, fo… Continue reading Tackling cyber risks head-on using security questionnaires
By Deeba Ahmed
JetBrains has fixed this flaw in version 2023.05.4 of the product released on September 18. It also released a security advisory but didn’t disclose technical details of the vulnerability for now.
This is a post from HackRead.com Read t… Continue reading JetBrains Patches Severe TeamCity Flaw Allowing RCE and Server Hijacking
50% of companies lack a dedicated security function for control systems and devices within their organizational structure, according to Cybellum. Security incidents involving industrial organizations have seen a sharp rise in recent years, with notable… Continue reading Regulatory pressure complicates cybersecurity for industrial equipment manufacturers
Blockchain technology has gained significant traction due to its decentralized nature and immutability, providing transparency and security for various applications, especially in finance. Having gained notoriety during the 2010s with the boom of crypt… Continue reading 5 ways in which FHE can solve blockchain’s privacy problems
A new APT group called Carderbee has been observed deploying the PlugX backdoor via a supply chain attack targeting organizations in Hong Kong.
The post New ‘Carderbee’ APT Targeted Chinese Security Software in Supply Chain Attack appeared … Continue reading New ‘Carderbee’ APT Targeted Chinese Security Software in Supply Chain Attack
The software supply chain encompasses the entire lifecycle of a software product, from its conception and development to its distribution and deployment. It involves a complex network of suppliers, vendors, developers, integrators, and users, making it… Continue reading Unraveling the importance of software supply chain security
In this Help Net Security video, Marc Gaffan, CEO at IONIX, discusses how businesses’ biggest cybersecurity mistake is not protecting the full external attack surface that continues to expand to include a businesses’ entire digital supply chain. … Continue reading Strengthening the weakest links in the digital supply chain
Supply chain executives significantly overestimate stakeholder trust in their supply chain capabilities and intentions, according to Deloitte. Of more than 1,000 executives from large global organizations surveyed, 89% on average who self-identified as… Continue reading Supply chain executives unaware of growing customer trust issues
Software depends on layers of code, and much of that code comes from open-source libraries. According to an Octoverse 2022 report, open-source code is used in 97% of applications. Not only do developers embrace open source, but so do nine in 10 companies. “Open-source software is the foundation of 99% of the world’s software,” Martin […]
The post Is Open-Source Security a Ticking Cyber Time Bomb? appeared first on Security Intelligence.
Continue reading Is Open-Source Security a Ticking Cyber Time Bomb?