Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Synopsys

synopsys

Solving telecom network security challenges with Defensics

Apr 15, 2024 By Andy Pan In Synopsys
The telecommunications industry has undergone tremendous changes in recent years. From the days when consumers could only make and receive voice calls on a landline to the broadband internet era in which people use data and stream videos on the go, telecom networks constitute an important backbone of the national economy. Telecom networks have evolved from 3G to 4G and 5G technologies.
Read Post

Filter and prioritize IAST vulnerability findings using Project Views in Seeker | Synopsys

Apr 11, 2024 By Synopsys In Synopsys
In this video, Product Manager, Scott Tolley shows how setting up the new Project Views feature in Seeker can help developers focus their time and attention on the most relevant vulnerability findings in running applications– without hiding the full details from security team. This new feature lets security and development teams...
View Video
synopsys

Securing the software supply chain with Black Duck Supply Chain Edition

Apr 9, 2024 By Mike McGuire In Synopsys
Each year, our "Open Source Security and Risk Analysis” (OSSRA) report highlights the fact that open source software (OSS) plays a critical and substantial role in modern application development, and it is therefore foundational to the software supply chain. The prevalence of OSS within commercial applications makes it difficult to track, and that makes it difficult to manage the risk that it may introduce.
Read Post

Mitigate Upstream Risk in your Software with Black Duck Supply Chain Edition | Synopsys

Apr 9, 2024 By Synopsys In Synopsys
In this video, we introduce the new Black Duck Supply Chain Edition, which provides a full range of supply chain security capabilities to teams responsible for building secure, compliant applications. With third-party SBOM import and analysis, malware detection, and export options in SPDX or CycloneDX formats, teams can establish complete supply chain visibility, identify and mitigate risk, and align with customer and industry requirements.
View Video
synopsys

What is the Xz Utils Backdoor : Everything you need to know about the supply chain attack

Apr 8, 2024 By Fred Bals In Synopsys
A week ago, on March 29th, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) warned that two versions of xz Utils, were found to have been compromised. The xz Utils code had been tampered with to include a malicious “backdoor” that would ultimately give attackers the same level of control over affected systems as authorized administrators.
Read Post
synopsys

SANS report: Securing the shifting landscape of application development

Apr 3, 2024 By Charlotte Freeman In Synopsys
Major shifts in application development are creating new and significant security risks. Continuous integration/continuous delivery (CI/CD) pipelines and technology advances like automation and AI mean the development process is now so complicated and fast-moving that corporations, DevOps directors, and security groups struggle to understand and manage it, let alone defend it from assaults.
Read Post
synopsys

Top open source licenses and legal risk for developers

Apr 1, 2024 By Fred Bals In Synopsys
If you’re a software developer, you’re probably using open source components and libraries to build software. You know those components are governed by different open source licenses, but do you know all the license details? In particular, do you know the sometimes-convoluted licensing conditions that could pose compliance challenges for your organization?
Read Post
Subscribe to Synopsys

Copyright © 2024 OpsMatters™. All rights reserved.