Blog | ReversingLabs | Paul Roberts (3)

July 17, 2023

Federal security guidance: Been there, done that

CISA and NSA issued security guidance on continuous integration/continuous delivery environments — but missed an opportunity to escalate the conversation.

June 15, 2023

CISA SBOM-a-rama tackles challenges: 5 key takeaways

The challenges — and also the promise — of software bills of materials were on display Wednesday as CISA hosted SBOM-a-rama. Here are five key takeaways.

June 12, 2023

Self-attestation on software security: What development teams need to know

Software vendors who do business with the federal government now have to prove they are practicing basic supply chain security. Here are the requirements.

May 25, 2023

Q&A with ReversingLabs COO Peter Doggart: With software supply chain security, 'your brand is at stake'

The new Chief Operating Officer at ReversingLabs, Peter Doggart, talks about the challenge of securing software supply chains — and the promise ReversingLabs offers.

May 23, 2023

Red teaming a country: Lessons learned from hacking India's government

John Jackson and his Sakura Samurai crew took India up on an invitation to test the security of government websites and apps. Here are the lessons learned.

May 10, 2023

Why fear rules when it comes to software bills of materials

In this ConversingLabs talk, Josh Corman, founder of I Am The Cavalry, explains what’s behind industry skepticism around SBOMs .

May 1, 2023

RSAC in review: Supply chain security, cyber war and AI

The stakes were raised at RSAC 2023: A “hot” cyber war in Ukraine, supply chain attacks on the rise — and let's not forget about artificial intelligence.

April 27, 2023

The rise of malware in the software supply chain – and what to do about it

Charlie Jones of ReversingLabs explains risk with supply chain attacks — and what development teams can do to spot malware lurking in signed code.

April 21, 2023

The 3CX attack gets wilder, marks first 'cascading supply chain compromise'

The surprising story of the supply chain hack of VoIP provider 3CX got even crazier this week. Here's what your application security need to know.

April 20, 2023

Companies scramble to cover software supply chain security gaps: 3 key survey takeaways

The new ReversingLabs Software Supply Chain Risk Survey found that supply chain security poses serious risk that traditional app sec tools can't address.