%term

The Next-Gen Software Supply Chain by Shlomi Ben Haim | CEO & Co-founder, JFrog

Sep 22, 2023 By JFrog In JFrog

The evolution from DevOps and CI/CD to cloud-native technologies, microservices architecture, security and governance - and now all the way to automation and Artificial Intelligence - requires a new generation of SSC management that aims to deliver software faster, with higher quality, enhanced security, and improved customer experiences. In this session, we’ll share insights from over 7,000 JFrog customers, and what the Fortune 100 list tells us about where the software supply chain is headed Next!

View Video

JFrog

Read more about The Next-Gen Software Supply Chain by Shlomi Ben Haim | CEO & Co-founder, JFrog

Incorporating Every Element - SSC as a Platform by Yoav Landman | CTO & Co-founder, JFrog

Sep 22, 2023 By JFrog In JFrog

Managing and securing the software supply chain end-to-end is one of the most difficult challenges facing DevOps and DevSecOps teams today. As developers continue to push all boundaries on the left and right side of the software release cycle, enterprise focus remains on binaries, and their movement through the pipeline automatically and securely. See how an integrated, consistent platform approach is the only way to solve next-gen supply chain challenges!

View Video

JFrog

Read more about Incorporating Every Element - SSC as a Platform by Yoav Landman | CTO & Co-founder, JFrog

A look at the future of supply chain and national security: Updates from CISA and NIST

Sep 22, 2023 By Dwayne McDaniel In GitGuardian

Explore CISA & NIST's recent cybersecurity publications. Get key insights into securing vital infrastructure in an ever-evolving threat landscape and how GitGuardian can help.

Read Post

GitGuardian

Read more about A look at the future of supply chain and national security: Updates from CISA and NIST

Understanding Malicious Package Attacks and Defense Strategies for Robust Cybersecurity

Sep 21, 2023 By Dilki Rathnayake In Tripwire

Malicious packages consist of software embedded with code that is capable of causing harm to an entire system or network. This is a rapidly growing threat affecting open-source software and the software supply chain. This attack method has seen a nearly 12,000% increase from 2022 to 2023, as reported by Synk. Some reasons include its technical feasibility, the potential for high returns, and the widespread distribution of open-source offerings, Common types of malicious packages encompass.

Read Post

Tripwire

Read more about Understanding Malicious Package Attacks and Defense Strategies for Robust Cybersecurity

Securing the Software Supply Chain: Key Findings From the Mend Open Source Risk Report

Sep 20, 2023 By Mend In Mend

Open source vulnerabilities are in permanent growth mode. A significant quarterly increase in the number of malicious packages published in registries such as npm and rubygems have shown the increasing need to protect against this trending attack. At the same time, companies struggle to close the remediation gap on known vulnerable open source code. It’s all in The Mend Open Source Risk Report, which details these and other significant risks posed by the ongoing rise in open source vulnerabilities and software supply chain attacks.

View Video

Mend

Read more about Securing the Software Supply Chain: Key Findings From the Mend Open Source Risk Report

How Supply Chain Attacks Work - And What You Can Do to Stop Them

Sep 20, 2023 By Mend In Mend

Supply chain attacks made headlines in 2022, sending shockwaves through the industry as security and business leaders scrambled to reexamine the security of their own supply chains. In this webinar, experts talk through the stages of a supply chain attack and the different types of attacks to look for. You will also learn what tools and strategies you can start using immediately to assess your own supply chain security and put defenses in place to keep your supply chain protected.

View Video

Mend

Read more about How Supply Chain Attacks Work - And What You Can Do to Stop Them

Unlocking Supply Chain Transparency for Low-Code/No-Code Apps with SBOM

Sep 18, 2023 By Ziv Daniel Hagbi In Zenity

The world of software development has witnessed a significant transformation thanks to low-code/no-code development platforms like Microsoft Power Platform, Salesforce, and ServiceNow. These platforms have empowered developers and business users of all technical backgrounds to create applications, automations, bots, connections (and more), rapidly and with greater accessibility.

Read Post

Zenity

Read more about Unlocking Supply Chain Transparency for Low-Code/No-Code Apps with SBOM

Honeytoken Adventure: From Beta to Beyond

Sep 18, 2023 By Soujanya Ain In GitGuardian

Read the journey of GitGuardian Honeytoken, a tool that is changing the game in supply chain protection and threat detection. Explore its features, the motivation behind its creation, and what's next.

Read Post

GitGuardian

Read more about Honeytoken Adventure: From Beta to Beyond

Software Supply Chain Security: The Basics and Four Critical Best Practices

Sep 14, 2023 By AJ Starita In Mend

Modern enterprise software is typically composed of some custom code and an increasing amount of third-party components, both closed and open source. These third-party components themselves very often get some of their functionality from other third-party components. The totality of all of the vendors and repositories from which these components (and their dependencies) come make up a large part of the software supply chain.

Read Post

Mend

Read more about Software Supply Chain Security: The Basics and Four Critical Best Practices

Q2 2023 Threat Landscape Report: All Roads Lead to Supply Chain Infiltrations | Webinar Replay

Sep 13, 2023 By Kroll In Kroll

Watch Kroll’s cyber threat intelligence leaders highlight key trends observed in Q2 2023 and outline the critical issues that organizations should be aware of, including a significant rise in ransomware activity fueled by the MOVEit vulnerability and new methods of email compromise attacks.

View Video

Kroll

Read more about Q2 2023 Threat Landscape Report: All Roads Lead to Supply Chain Infiltrations | Webinar Replay

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

The Next-Gen Software Supply Chain by Shlomi Ben Haim | CEO & Co-founder, JFrog

Incorporating Every Element - SSC as a Platform by Yoav Landman | CTO & Co-founder, JFrog

A look at the future of supply chain and national security: Updates from CISA and NIST

Understanding Malicious Package Attacks and Defense Strategies for Robust Cybersecurity

Securing the Software Supply Chain: Key Findings From the Mend Open Source Risk Report

How Supply Chain Attacks Work - And What You Can Do to Stop Them

Unlocking Supply Chain Transparency for Low-Code/No-Code Apps with SBOM

Honeytoken Adventure: From Beta to Beyond

Software Supply Chain Security: The Basics and Four Critical Best Practices

Q2 2023 Threat Landscape Report: All Roads Lead to Supply Chain Infiltrations | Webinar Replay

Monthly Archive

Follow Us