Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

tripwire

Keeping threat actors away from your supply chain

Nov 2, 2022 By Tripwire Guest Authors In Tripwire

The supply chain is a complex environment that goes deep inside a business and involves the majority of its infrastructure, operations, personnel, and outer relations: vendors, partners, and customers. To protect that matrix is extremely difficult, as there are numerous sensitive nodes, lines, and processes that a security team has to take care of: software and hardware resources, cloud, hybrid and local environments, platforms, and web apps.

Read Post

Supply Chain Security Intro Workshop

Nov 1, 2022 By JFrog In JFrog
More and more attacks are aimed at the entire supply chain, which means that we developers are increasingly targeted by the attackers. Attacks like the SolarWinds hack show us that making sure you don’t use vulnerable dependencies isn’t enough. The attackers have their sights set on the entire development process with its components. In this workshop, we will look at the first steps and try them out in practice which will enable you to integrate the topic of security into your everyday life as a developer.
View Video

Bridging the trust gap in connected supply chains

Oct 27, 2022 By DataTrails In DataTrails
In these ultra connected times we increasingly need to share data between organizations. But how can you trust data that’s been generated outside your boundary walls? By another organization or a machine? That’s the trust gap, and that’s where RKVST comes in. Instead of bridging that gap with manual processes, verifying and auditing every document, RKVST takes that same risk management approach but automates it so you can trust the data, documents supply chain information at scale.
View Video

How zero trust helps reduce risk in connected supply chains

Oct 27, 2022 By DataTrails In DataTrails
What is zero trust and how does a zero trust approach helps reduce risk in connected supply chain decision making? Find out how RKVST helps automate the tracking and sharing of supply chain evidence you can rely on, by integrating with the tools businesses already use today. Jon Geater and Rob Brown from RKVST discuss zero trust at InfoSecurity Europe, London, June 2022.
View Video

RKVST - the Archivist of the modern internet

Oct 27, 2022 By DataTrails In DataTrails
RKVST (pronounced Archivist) is an evidence platform that delivers a reliable chain of custody for supply chain data. It proves and verifies who did what when to any asset in the supply chain which can then be shared with supply chain partners. Jon Geater , Chief Product Officer, talks about RKVST at InfoSecurity Europe, London, June 2022.
View Video
riscosity

Software Supply Chain Risk Management

Oct 27, 2022 By Security Guest Expert In Riscosity

Can you imagine a world without software? No, neither can I. The same goes for many other technology-based products, such as cell phones. Software is everywhere and it’s critical to businesses of all sizes. In this article, we discuss the software supply chain risk management process needed to protect your business from risks in the software supply chain and how that affects product development speed in what seems like an ever-changing market landscape.

Read Post
jfrog

Malicious Packages Are a Rising Threat in Software Supply Chain Attacks

Oct 24, 2022 By Jonathan Sar Shalom In JFrog

Welcome to the first post of the malicious software packages series for the DevOps and DevSecOps community. Each Monday, this technical series will focus on various malicious packages and their effects on the software supply chain, all published over the next four weeks. We’ll dive deeper into malicious packages in each post, including Here we go. Let’s discuss malicious software packages in your software supply chain.

Read Post

Copyright © 2026 OpsMatters™. All rights reserved.