%term

Supply Chain Security Intro Workshop

Nov 1, 2022 By JFrog In JFrog

More and more attacks are aimed at the entire supply chain, which means that we developers are increasingly targeted by the attackers. Attacks like the SolarWinds hack show us that making sure you don’t use vulnerable dependencies isn’t enough. The attackers have their sights set on the entire development process with its components. In this workshop, we will look at the first steps and try them out in practice which will enable you to integrate the topic of security into your everyday life as a developer.

View Video

JFrog

Read more about Supply Chain Security Intro Workshop

Advisory: New OpenSSL Critical Security Vulnerability

Oct 31, 2022 By Carol Hildebrand In Mend

Last week, the OpenSSL Project announced that on Tuesday, November 1, 2022 1300-1700 (UTC), they will release OpenSSL version 3.0.7 to address a critical CVE.

Read Post

Mend

Read more about Advisory: New OpenSSL Critical Security Vulnerability

Async Inventory Reporting for Organizations & Accounts

Oct 31, 2022 By Mend In Mend

The video describes how to use async inventory reporting for Accounts with multiple organizations and how to filter a report by library name before generation for a project, product, or organization using the Mend UI.

View Video

Mend

Read more about Async Inventory Reporting for Organizations & Accounts

Pyrsia OSS Project

Oct 28, 2022 By JFrog In JFrog

Meet our partner experts and learn more about how JFrog's Pyrsia project (the decentralized package network) works hard to secure the #softwaresupplychain! Learn more at https://pyrsia.io/.
#DevOps #DevSecOps

View Video

JFrog

Read more about Pyrsia OSS Project

Async Inventory Reporting for Organizations & Accounts

Oct 28, 2022 By Mend In Mend

The video describes how to use async inventory reporting for Accounts with multiple organizations and how to filter a report by library name before generation for a project, product, or organization using the Mend UI.

View Video

Mend

Read more about Async Inventory Reporting for Organizations & Accounts

WebStorm Integration

Oct 28, 2022 By Mend In Mend

Are you using JetBrains WebStorm? Mend can integrate with your IDE and quickly detect open source artifacts and their known vulnerabilities. Mend also provides all the information you need to fix these artifacts automatically.

View Video

Mend

Read more about WebStorm Integration

It's Cybersecurity Awareness Month-So Let's Talk Automation and Home Security

Oct 28, 2022 By Chris Lindsey In Mend

At this point, anybody in the IT world would have to be living in a cave in the wilderness to not know that October is Cybersecurity Awareness Month. (And since there’s no Wi-Fi in wilderness caves, that scenario is admittedly unlikely.) This week, I wanted to take a closer look at a couple topics, one for work and one at home.

Read Post

Mend

Read more about It's Cybersecurity Awareness Month-So Let's Talk Automation and Home Security

Upcoming Critical OpenSSL Vulnerability

Oct 28, 2022 By Ben Hirschberg In ARMO

OpenSSL is the most popular implementation of the TLS protocol (Transport Layer Security) which is essentially the de-facto security protocol of the internet today. The OpenSSL team announced critical security updates of versions above version 3.0 (OpenSSL 3.0 was released on September 7, 2021). The myriad of projects and software depending on OpenSSL must update and release a new version to enable end users to start patching their systems.

Read Post

ARMO

Read more about Upcoming Critical OpenSSL Vulnerability

Transitioning to ABAC: Protect Your Data as You Move to the Cloud

Oct 27, 2022 By Danny Baier In Styra

As enterprises move their applications to the cloud, they’re adopting finer-grained authorization for their users in order to better secure architectures and applications. Today, many, if not most, organizations use a role-based access control (RBAC) model for secure access. But as the push for fine-grained control grows, many organizations are asking: should we transition to attribute-based access control (ABAC)?

Read Post

Styra

Read more about Transitioning to ABAC: Protect Your Data as You Move to the Cloud

Modern AppSec Moves Beyond Shift Left to Shift Smart

Oct 27, 2022 By Carol Hildebrand In Mend

This is the third of a six-part blog series that highlights findings from a new Mend white paper, Five Principles of Modern Application Security Programs. Be sure to look out for our upcoming blogs on each of the five principles.

Read Post

Mend

Read more about Modern AppSec Moves Beyond Shift Left to Shift Smart

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Supply Chain Security Intro Workshop

Advisory: New OpenSSL Critical Security Vulnerability

Async Inventory Reporting for Organizations & Accounts

Pyrsia OSS Project

Async Inventory Reporting for Organizations & Accounts

WebStorm Integration

It's Cybersecurity Awareness Month-So Let's Talk Automation and Home Security

Upcoming Critical OpenSSL Vulnerability

Transitioning to ABAC: Protect Your Data as You Move to the Cloud

Modern AppSec Moves Beyond Shift Left to Shift Smart

Monthly Archive

Follow Us