<img height="1" width="1" style="display:none" src="https://www.facebook.com/tr?id=1076912843267184&amp;ev=PageView&amp;noscript=1">

ReversingLabs Blog

September 21, 2023

Threat modeling and the supply chain: An essential tool for managing risk across the SDLC

Here's what your team needs to understand about threat modeling and software supply chain security — a critical mapping of risk. 
September 20, 2023

The art of security chaos engineering

What if dev and app sec teams showed the same nimbleness and ruthless efficiency as cybercriminals? Fastly's Kelly Shortridge explains why it's essential.
September 19, 2023

NIST CSF 2.0: What it means for modern software supply chain risk management

Cybersecurity Framework 2.0 makes big improvements, adding focus on software supply chain security. Here's what the changes mean for your SecOps team.
September 13, 2023

IoT and the supply chain: The road to securing devices

In this episode of ConversingLabs, NetRise CEO Thomas Pace talks about supply chain threats to the Internet of Things (IoT).
September 12, 2023

SANS DevSecOps report: 5 key takeaways

"Shift left" is giving way to up-front risk assessments, and companies are tapping external support for third-party compliance. Learn from app sec peers.
September 7, 2023

20 application security pros you should follow

These leading app sec experts provide a steady of flow of security knowledge to keep you up to speed.
September 6, 2023

Lemons and liability: How security warranties could tame the software market

In this ConversingLabs, Daniel Woods shares insights from his research on software warranties, and how shifting liability to producers could define the market.
September 5, 2023

Threat research roundup: Lessons learned from recent PyPI and npm supply chain attacks

RL threat researchers have discovered multiple malicious campaigns on open repositories recently. Join the Webinar to discuss key takeaways.
August 31, 2023

VMConnect supply chain attack continues, evidence points to North Korea

ReversingLabs researchers discovered more packages that are part of the previously identified VMConnect campaign, and evidence linking the campaign to North Korean threat actors.
August 30, 2023

10 Hacker Summer Camp speakers to follow year-round

Why does expert cybersecurity knowledge sharing have to stop in Las Vegas? Follow these top speakers year-round.
August 24, 2023

The Week in Security: WinRAR exploit targets traders, malicious npm packages go after game devs

Hackers are exploiting a zero-day to target crypto and stock traders, RL discovers over a dozen malicious npm packages targeting Roblox game developers.
August 23, 2023

Supply chain security: Is technical debt weighing your team down?

Vulnerability management and piecemeal app sec testing are like paying the interest only on mounting security technical debt. Where do you stand?

SUBSCRIBE

Get our blog delivered to your in-box weekly to stay up to date on key trends, analysis and best practices across threat intelligence and software supply chain security.

The Art of Security Chaos Engineering The Art of Security Chaos Engineering
Conversations About Threat Hunting and Software Supply Chain Security
ReversingGlass: Happy Birthday, ReversingGlass ReversingGlass: Happy Birthday, ReversingGlass
Glassboard conversations with ReversingLabs Field CISO Matt Rose