Special Report: The State of Software Supply Chain Security 2022-2023
READ NOW
Get Your Free Software Bill of Materials (SBOM) Report & Analysis
START HERE

ReversingLabs Blog

Carolynn van Arsdale

Carolynn van Arsdale
Cyber Content Creator at ReversingLabs. Carolynn is a reporter, writer, and researcher in the cybersecurity space. Carolynn is also a correspondent for The Security Ledger, a cybersecurity news website. She has been involved in podcast and event production, and now produces ConversingLabs, a ReversingLabs podcast. Prior to joining ReversingLabs, Carolynn held communication roles in the non-profit and higher education spaces.

Recent Posts from Carolynn van Arsdale

The Week in Security: PyPI hit by ‘Lolip0p’ info-stealing attack, ransomware targets ship fleet
January 19, 2023

The Week in Security: PyPI hit by ‘Lolip0p’ info-stealing attack, ransomware targets ship fleet

This week: A new software supply chain attack has been discovered on PyPI. Also: A ransomware attack on ship management software impacts 1000 vessels.
Read More
The Week in Security: When AI attacks, ChatGPT lowers the bar for developing malware
January 12, 2023

The Week in Security: When AI attacks, ChatGPT lowers the bar for developing malware

This week: Trojan Puzzle attack shows how AI can be trained for malicious purposes. Also: ChatGPT is enabling script kiddies to write functional malware. 
Read More
App sec and the supply chain: Work in tandem with engineers to achieve true software security
January 12, 2023

App sec and the supply chain: Work in tandem with engineers to achieve true software security

Application security is foundational to the software supply chain security ecosystem. But it takes a village. Derek Fisher explains in this fireside chat. 
Read More
The Week in Security: Ransomware attacks close out 2022 with a bang, PyTorch compromise explored
January 5, 2023

The Week in Security: Ransomware attacks close out 2022 with a bang, PyTorch compromise explored

The tail-end of 2022 was plagued by ransomware attacks on critical infrastructure. Also, we break down the PyTorch software supply chain attack.
Read More
The Week in Security: Okta says source code stolen. Also: SentinelSneak: PyPi moduel poses as security SDK
December 22, 2022

The Week in Security: Okta says source code stolen. Also: SentinelSneak: PyPi moduel poses as security SDK

Okta is hit with another supply chain attack. Also, ReversingLabs discovered a malicious PyPI package posing as a SentinelOne SDK client.
Read More
Expert panel: No ‘silver bullet’ for supply chain security
December 19, 2022

Expert panel: No ‘silver bullet’ for supply chain security

Experts and a top analyst discussed the state of software supply chain security in a recent Webinar. Here are key takeaways from their discussion.
Read More
The Week in Security: Wiper malware rains down on 2022, Microsoft certificates abused
December 15, 2022

The Week in Security: Wiper malware rains down on 2022, Microsoft certificates abused

This week: Twelve malware wipers have been discovered in 2022. Also: The Cuba ransomware gang abused Microsoft certificates to sign malware.
Read More
The Week in Security: Software supply chain attack mines diamond industry, npm security boosted
December 8, 2022

The Week in Security: Software supply chain attack mines diamond industry, npm security boosted

This week: An APT group carried out a data wiping supply chain attack globally. Also: GitHub has introduced new security features for its npm repository. 
Read More

SUBSCRIBE

Get the best of the ReversingLabs Blog delivered to your in-box weekly.