OWASP researcher: Supply chain attacks require going beyond vulnerabilities
Jeremy Long, who founded OWASP's Dependency Check Program, urges organizations to shift from traditional AppSec testing to tools that can remediate malicious threats.
Carolynn van Arsdale
Writer, ReversingLabs. Carolynn is a reporter, writer, and researcher in the cybersecurity space. She has written for several publications, such as The Security Ledger and Security Boulevard. She has been involved in podcast and event production, and now produces ConversingLabs, a ReversingLabs podcast. Prior to joining ReversingLabs, Carolynn held communication roles in the non-profit and higher education spaces. Her official title at ReversingLabs is Manager, Content Marketing.
Posts from Carolynn van Arsdale
OWASP researcher: Supply chain attacks require going beyond vulnerabilities
ReversingLabs @ Hacker Summer Camp: See you there
Every summer, teams congregate in Las Vegas to talk about all things cybersecurity. ReversingLabs has a lot going on. Here’s what we're up to at BSides, Black Hat, and DEF CON.
Tools gap leaves you exposed to supply chain attacks
Traditional application security can't defend against today's attacks. Our report explains why — and why you need to upgrade your AppSec strategy.
From the Labs: YARA Rule for Detecting Minodo
Inside Project Nemesis: Leveraging YARA to Identify Minodo in Evolving Cybercrime Operations
The Week in Security: Chinese hackers breach government email, AI models easily poisoned
Welcome to the latest edition of The Week in Security, which brings you the newest headlines from both the world and our team across the full stack of security: application security, cybersecurity, and beyond.
From the Labs: YARA Rule for Detecting StealC
Tracking StealC's Rise: How YARA Rules Help Uncover a New Breed of Information Stealers
.webp&w=3840&q=75)
The Week in Security: Third-party breach exposes customer to LockBit, countries team to block DDoS
Welcome to the latest edition of The Week in Security, which brings you the newest headlines from both the world and our team across the full stack of security: application security, cybersecurity, and beyond.
The Week in Security: Third-party compromise lands pilot data from American, Southwest airlines
Welcome to the latest edition of The Week in Security, which brings you the newest headlines from both the world and our team across the full stack of security: application security, cybersecurity, and beyond.
The Week in Security: BlackCat threatens to leak Reddit data, attackers target npm packages (again)
Welcome to the latest edition of The Week in Security, which brings you the newest headlines from both the world and our team across the full stack of security: application security, cybersecurity, and beyond.