Dark Reading’s Post

Software supply chain attacks have become a significant concern, moving to the forefront of cybersecurity issues. According to Verizon's Data Breach Investigations Report, breaches involving third parties, including software supply chains, surged by 180% in 2023. These attacks exploit vulnerabilities in third-party software components, causing widespread disruption and data breaches, highlighting the urgent need for robust supply chain security measures. To learn more, check out Dark Reading! Follow us Start With WCPGW! #supplychain #databreach #cybersecurity #hardwaresecurity #chipsecurity #semiconductor #startwithwcpgw #wcpgw

🔔 Struggling with alert fatigue? You're not alone! Our VP of Product Delivery and Operations, Saty Sundarram, shares insights on establishing clear alert policies and procedures to ensure consistency in your security team's approach to vulnerability detection and response. Read more from Saty: https://bit.ly/3Xhr16g #RapidInsights #SoftwareSecurity #AlertFatigue #SecurityTeams

Attention all my engineering and security friends! It's time to take action and help shift security left for your engineers. Don't wait any longer, check it out now. Discover how New Relic APM offers real-time alerts, broad visibility, and proactive prevention, revolutionizing security in development and at runtime.

Read this Forbes article that mention's CybelAngel and our new API Threat Detection solution! #API #APIexposure

What are the APIs security risks? How can we applied tactics to protect our systems against them? APIs are key on Microservices architectures. However, they are meant to be exposed publicly which increase the surface of attack. That can compromised our whole architecture. In this video from the Software Engineering Institute | Carnegie Mellon University, they explain 3 API security risks and insights on how to protect against them. I also share the paper which gives full of details on the topic: https://lnkd.in/dstmSt9r https://lnkd.in/d9G5F4F6 #softwarearchitecture #softwarearchitect #softwaredevelopment #cloudarchitecture #solutionsarchitecture

𝐓𝐡𝐞 𝐅𝐮𝐭𝐮𝐫𝐞 𝐨𝐟 𝐃𝐞𝐯𝐒𝐞𝐜𝐎𝐩𝐬: 𝐒𝐡𝐨𝐜𝐤𝐢𝐧𝐠 𝐓𝐫𝐞𝐧𝐝𝐬 𝐟𝐨𝐫 𝟐𝟎𝟐𝟒 The Future of DevSecOps: Shocking Trends for 2024 Revealed! In this video, we dive deep into the evolving landscape of DevSecOps, exploring the most shocking trends and predictions for 2024. Watch here for more - https://lnkd.in/g9KYeAQ2 #DevSecOps #TechTrends2024 #CyberSecurity #SoftwareDevelopment #ITSecurity

Wrote my first blog post for Modular on how we working to guard against supply chain attacks and recover quickly if they do happen. We’ve been proactively building solutions to this issue, long before the recent attacks on XZ/LZMA, by taking a multifaceted approach for securing and validating software delivery. That includes building upon The Update Framework standard. https://lnkd.in/gSTWNSZC

How do you harden your Kubernetes clusters, enhance incident response capabilities, and implement defense-in-depth measures? Find out here.

👏 GitGuardian achieved 99.4% reduction in CVEs! Discover how they mastered secure code with Chainguard Images: ✅ Drastically minimized vulnerabilities, streamlining CVE management and enhancing trust with clients. 💯 Achieved nearly zero CVEs, reducing image size by 33%, and simplifying security processes. 🚀 Empowered their team to focus on innovation, saving significant resources and expanding security capabilities. Explore the full story and insights from Romain Jouhannet, GitGuardian’s Sr. Product Manager. Read the full case study — link in comments below!

In case #security #grc #presales #gtm teams and leaders think SecurityPal is still 'just' a managed service where we have amazing people filling out questionnaires...check this out. Tl;dr: It's not 2020 anymore. We've grown up and keep maturing every day. SecurityPal has evolved into the Customer Assurance (CAx)™ platform that incorporates the best of #AI, #SaaS, #APIs, "Augmented Intelligence", and world-class Security Analysts-in-the-loop. Through this platform, our customers provide their customers--and vendors--the most frictionless experience across the sales and procurement funnels when it comes to security reviews; all while saving hundreds of hours of their own time. It's not about eliminating questionnaires (as much as people may hope for this) or restricting sellers and buyers to cumbersome processes. It's about empowering the best companies in the world and their people to assure their customers that they are safe to do business with.