Supply chain security insights: A successful attack against a supplier can lead to multiple opportunities against the supplier’s downstream customers.
The post Cyber Insights 2024: Supply Chain appeared first on SecurityWeek.
Vigilant Ops Raises $2 Million for SBOM Management Platform
Vigilant Ops receives $2 million seed investment from DataTribe to help organizations manage SBOMs.
The post Vigilant Ops Raises $2 Million for SBOM Management Platform appeared first on SecurityWeek.
NSA Issues Guidance on Incorporating SBOMs to Improve Cybersecurity
NSA has published guidance to help organizations incorporate SBOM to mitigate supply chain risks.
The post NSA Issues Guidance on Incorporating SBOMs to Improve Cybersecurity appeared first on SecurityWeek.
US Government Issues Guidance on SBOM Consumption
CISA, NSA, and ODNI issue new guidance on managing open source software and SBOMs to maintain awareness on software security.
The post US Government Issues Guidance on SBOM Consumption appeared first on SecurityWeek.
CISA Unveils New HBOM Framework to Track Hardware Components
CISA unveils a new Hardware Bill of Materials (HBOM) framework for buyers and sellers to communicate about components in physical products.
The post CISA Unveils New HBOM Framework to Track Hardware Components appeared first on SecurityWeek.
Software Supply Chain: The Golden Container Ship
By having a golden image you will put a process in place that allows you to quickly take action when a vulnerability is found within your organization.
The post Software Supply Chain: The Golden Container Ship appeared first on SecurityWeek.
SBOMs – Software Supply Chain Security’s Future or Fantasy?
If after eighteen months, meaningful use of SBOMs is unachievable, we need to ask what needs to be done to fulfill Biden’s executive order.
The post SBOMs – Software Supply Chain Security’s Future or Fantasy? appeared first on SecurityWeek.
New SBOM Hub Helps All Stakeholders in Software Distribution Chain
Lineaje introduces SBOM360 Hub, an exchange allowing software producers, sellers, and consumers to publish, share and use SBOMs and related compliance artifacts.
The post New SBOM Hub Helps All Stakeholders in Software Distribution Chain appeared first on SecurityWeek.
The SBOM Bombshell
SBOMs can be used for managing risk and determining vulnerability impact, but it’s very hard to build holistic risk models when the data is not standardized across multiple platforms.
The post The SBOM Bombshell appeared first on SecurityWeek.
Top 10 Security, Operational Risks From Open Source Code
Endor Labs has introduced an OWASP-style listing of the most important or impactful risks inherent in the use of open source software (OSS).
The post Top 10 Security, Operational Risks From Open Source Code appeared first on SecurityWeek.