The Week in Security: Coalition takes down Russia's Snake espionage tool, GitHub plugs API leaks
...
Carolynn van Arsdale
Writer, ReversingLabs. Carolynn is a reporter, writer, and researcher in the cybersecurity space. She has written for several publications, such as The Security Ledger and Security Boulevard. She has been involved in podcast and event production, and now produces ConversingLabs, a ReversingLabs podcast. Prior to joining ReversingLabs, Carolynn held communication roles in the non-profit and higher education spaces. Her official title at ReversingLabs is Manager, Content Marketing.
Posts from Carolynn van Arsdale
The Week in Security: Coalition takes down Russia's Snake espionage tool, GitHub plugs API leaks
The Week in Security: Sunburst attack set off alarms for months before discovery
Welcome to the latest edition of The Week in Security, which brings you the newest headlines from both the world and our team across the full stack of security: application security, cybersecurity, and beyond.
The Week in Security: A possible Colonial Pipeline 2.0, ransomware takes bite out of American eateries
Welcome to the latest edition of The Week in Security, which brings you the newest headlines from both the world and our team across the full stack of security: application security, cybersecurity, and beyond.
What traditional app sec tools miss: The monsters in your software supply chain
Matt Rose presents at RSAC 2023 on the mismatch between traditional app sec tools like SCA and modern supply chain threats. Here are highlights from his talk.
The Week in Security: 3CX attack caused by earlier supply chain hack, malware in Google Play
One software supply chain attack caused another, making it a first for the industry. Also: Malware spreads via apps in the Google Play Store.
What’s hot at RSA Conference 2023: 8 must-see software supply chain security talks
Software supply chain security is taking center-stage at RSAC 2023. Here are the talks you don't want to miss.
Secrets security: The why, the how – and what to do about it
Secrets are increasingly exposed during software development, creating a field-day for malicious actors. Here are key takeaways from our special report series, Secrets Exposed.
The Week in Security: 3CX attackers identified as North Korean, CISA pushes Secure by Design
Welcome to the latest edition of The Week in Security, which brings you the newest headlines from both the world and our team across the full stack of security: application security, cybersecurity, and beyond.
What went wrong with the 3CX software supply chain attack — and how it could have been prevented
Experts break down the incident, and explain how app sec tools are evolving to detect and prevent such attacks.