Blog | ReversingLabs (17)

March 7, 2024

5 reasons you should consider a career in application security

There are many reasons to consider a role AppSec. But one stands out: Software supply attacks are creating job security and opportunity.

March 6, 2024

NIST CSF 2.0: Better risk management for the new era of supply chain security

NIST's Cybersecurity Framework 2.0 has been released, complete with a new focus on software supply chain security. Here are key takeaways for your team.

March 5, 2024

NIST updates supply chain guidance: 3 ways to pump up your CI/CD security

The National Institute of Standards and Technology has beefed up its guidelines for securing CI/CD environments. Are you ready to bulk up your program?

March 3, 2024

Level up your YARA game

Learn how to apply YARA rules for threat detection, searching, hunting and more.

February 29, 2024

All SBOMs are not created equal: What's required for them to be effective

Here are key challenges with SBOMs, how tools affect their usefulness — and what it will take to make them effective at software supply chain security.

February 28, 2024

Secure your AI development tools: 4 key questions to ask

When using AI tools including GitHub Copilot, your security team must be aware of — and protect against — certain risks. Here are the top considerations.

February 27, 2024

Lessons in threat modeling: How attack trees can deliver AppSec by design

Here's what development and application security teams need to know about using attack trees in tandem with threat modeling to lock down their software.

February 22, 2024

Operation Cronos and the LockBit takedown: What we know

The U.S., U.K., Canada and eight partner countries have disrupted the LockBit ransomware group. Here are the key takeaways, along with expert insights.

February 21, 2024

4 ways hero culture is killing your security program's effectiveness

Learn why hero culture is a problem — and how companies and the industry can avoid its negative effects and develop more resilient security operations.

February 20, 2024

Attackers leverage PyPI to sideload malicious DLLs

RL discovered two malicious PyPI packages and a larger subsequent campaign of packages — highlighting that DLL sideloading is an emerging method for software supply chain attacks.

February 15, 2024

5 key takeaways from ESG's software supply chain complexity report

A new report from Enterprise Strategy Group highlights key challenges stemming from the complexity of modern software development. Here are key takeaways.

February 14, 2024

Meet the New RL Partner Program

The RL Partner Program provides resellers, distributors, consultants, MSSPs, and technology providers tools to extend RL solutions to more organizations.

Software Supply Chain Security

File Security

Security Operations

Products

Technology

Industry

Partners

Alliances

Resources

Company

Events

Press

5 reasons you should consider a career in application security

NIST CSF 2.0: Better risk management for the new era of supply chain security

NIST updates supply chain guidance: 3 ways to pump up your CI/CD security

Level up your YARA game

All SBOMs are not created equal: What's required for them to be effective

Secure your AI development tools: 4 key questions to ask

Lessons in threat modeling: How attack trees can deliver AppSec by design

Operation Cronos and the LockBit takedown: What we know

4 ways hero culture is killing your security program's effectiveness

Attackers leverage PyPI to sideload malicious DLLs

5 key takeaways from ESG's software supply chain complexity report

Meet the New RL Partner Program

Topics

Special Reports

The 2025 Software Supply Chain Security Report

Upcoming Webinars

ConversingLabs

Topics

Follow us

Subscribe

Special Reports