Why Understanding Your Open Source Licenses Matters
Fully understanding open-source licenses is crucial for your projects and organization. Let's look at where these licenses come from and how they can impact your applications.
Security | Threat Detection | Cyberattacks | DevSecOps | Compliance
The Latest Cybersecurity News & Insights From Around The World
Git
Understanding AI Package Hallucination: The latest dependency security threat
In this video, we explore AI package Hallucination. This threat is a result of AI generation tools hallucinating open-source packages or libraries that don't exist. In this video, we explore why this happens and show a demo of ChatGPT creating multiple packages that don't exist. We also explain why this is a prominent threat and how malicious hackers could harness this new vulnerability for evil. It is the next evolution of Typo Squatting.
Early Lessons from the Sisense Breach
Business intelligence company Sisense has seen secrets compromised in its GitLab repositories, leading to a siphoning of its customers' sensitive data.
Why you need an SBOM (Software Bill Of Materials)
SBOMs are security analysis artifacts becoming required by more companies due to internal policies and government regulation. If you sell or buy software, you should know the what, why, and how of the SBOM.
GitHub Advanced Security Features And Security In Jira
When it comes to software development, security is a necessary element. That is why we will analyze GitHub Advanced Security and how Jira supports this DevSecOps feature. GitHub Advanced Security brings a range of tools to the table, such as code scanning, secret scanning, and dependency review – customized to identify vulnerabilities before they escalate. Jira integrates project management, turning the complex task of tracking and managing security issues into a streamlined process.
Managing Secrets Security at any Scale: introducing the GitGuardian Secrets Management Needs Quiz
Leverage our newest quiz to discover the most appropriate approach to managing secrets safely based on where your organization is today and how it will grow in the future.
ATLSECCON 2024: Navigating the Future of Cybersecurity in Halifax
Explore ATLSECCON 2024: a journey through mindfulness, risk management, Active Directory security, understanding containers, and more in the far North of Halifax.
What is ASPM - Application Security Posture Management Defined
Welcome to our concise video on ASPM – Application Security Posture Management! In this brief 1-minute video, we unravel the complexities surrounding ASPM, shedding light on its crucial role in safeguarding digital assets and data integrity. ASPM serves as a comprehensive framework for assessing, monitoring, and enhancing the security posture of applications throughout their lifecycle. From development to deployment and beyond, ASPM empowers organizations to proactively identify and mitigate security risks, vulnerabilities, and compliance gaps.
Taking the Long View: GitGuardian's Approach to Market Relevance in Cyber
My perspective on how GitGuardian approaches the cybersecurity market with a focus on the long game.
The Open-Source Backdoor That Almost Compromised SSH
The open-source world narrowly escaped a sophisticated supply-chain attack that could have compromised countless systems. A stark reminder of the necessity of vigilant monitoring and rigorous vetting within the open-source ecosystem to maintain trust and security.