RL announced the Spectra Advanced File Analysis and Malware Detection suite, a strategic update of our malware analysis and threat hunting solutions for advanced file analysis and threat detection. Here’s what you need to know.
Cybersecurity Framework 2.0 includes measures for C-SCRM, a NIST program for improving software risk management. Get key insights from our Webinar.
If you’re a SecOps professional heading to RSA Conference 2024, make your time count by attending these essential talks.
Here's what changes to the National Vulnerability Database mean for vulnerability management — and why you should instead focus on malware and tampering.
The foundation is upgrading the standard for the quantum era, adding ML-readable attestation and more. Here's how it boosts software supply chain security.
Generative AI can ease the burdens of threat modeling — and speed it up. But it's not a panacea. Here's what security teams can realistically expect.
The new checklist is organized into 13 areas of analysis. Here's what your security team needs to know about the most important points from each area.
There is no foolproof method to identify phony developer accounts — but there are telltale signs. Threat researchers share three.
The Circle CI breach put secrets security front of mind. Now AI and low-code are introducing more risk. Here are key takeaways for managing secrets risk.
Here's why the duo results in a perfect storm, key considerations — and expert advice on how engineering and application security teams can tackle the problem.
Here's what you need to know about RL's predictive malware detection.
Two newly discovered extensions on the VS Code Marketplace are designed to steal sensitive information, showing that open source attacks are expanding.
Software complexity is growing — making SBOMs a necessity. But they need to be actionable to manage risk. Here's how to put them to work.
Software tampering and social engineering were used in a months-long campaign to plant malicious code in major Linux distributions. Here's what we know.
Understand the state of software supply chain security with key takeaways from recent research and surveys of application security and development pros.