Blog | ReversingLabs (23)

October 12, 2023

The evolution of AppSec: Getting off the hamster wheel remains elusive

Experts say scan-and-fix will remain for some time. But application security tools are evolving to provide prioritization and automation.

October 10, 2023

Are APIs the weak link in your supply chain security?

Here's why application programming interface security is critical to risk management — and the advances needed to move API security forward.

October 5, 2023

The state of OSS security: Changes in attack methods, policy

What’s ahead for open source software security? ConversingLabs caught up with Mikaël Barbero of the Eclipse Foundation to answer that question.

October 4, 2023

Typosquatting campaign delivers r77 rootkit via npm

One “s” is all that separates a legitimate npm package from a malicious twin that delivered the r77 rootkit, and was downloaded more than 700 times, ReversingLabs researchers discovered.

October 3, 2023

ReversingLabs A1000 Threat Analysis and Hunting Solution Update Drives SecOps Forward

Version 8.3 of RL's A1000 Malware Analysis Platform delivers better visuals, search, and an improved cloud sandbox. Here are all of the updates.

October 2, 2023

NIST supply chain security guidance for CI/CD environments: What you need to know

While NIST's guidelines for supply chain security in CI/CD environments are welcomed, putting them into practice may be challenging for some organizations.

September 28, 2023

BlackCat (ALPHV): What we know about the MGM hack

Ransomware-as-a-service gang ALPHV/BlackCat carried out a sophisticated attack on the hotel and casino giant MGM. Here’s what the RL threat team knows.

September 27, 2023

With growing threats to Apple devices, Kandji ramps up

Kandji's Devin Byrd explains how as macOS and iOS marketshare has grown, so have the cyber threats. Learn how Kandji is addressing the growing risk.

September 26, 2023

EPSS vs CVSS: Will exploit prediction move the needle?

Will the Exploit Prediction Scoring System improve AppSec and software supply chain security? Here's what you need to know.

September 21, 2023

Threat modeling and the supply chain: An essential tool for managing SDLC risk

Here's what your team needs to understand about threat modeling and software supply chain security — a critical mapping of risk.

September 20, 2023

The art of security chaos engineering

What if dev and app sec teams showed the same nimbleness and ruthless efficiency as cybercriminals? Fastly's Kelly Shortridge explains why it's essential.

September 13, 2023

IoT and the supply chain: The road to securing devices

In this episode of ConversingLabs, NetRise CEO Thomas Pace talks about supply chain threats to the Internet of Things (IoT).

Software Supply Chain Security

File Security

Security Operations

Products

Technology

Industry

Partners

Alliances

Resources

Company

Events

Press

The evolution of AppSec: Getting off the hamster wheel remains elusive

Are APIs the weak link in your supply chain security?

The state of OSS security: Changes in attack methods, policy

Typosquatting campaign delivers r77 rootkit via npm

ReversingLabs A1000 Threat Analysis and Hunting Solution Update Drives SecOps Forward

NIST supply chain security guidance for CI/CD environments: What you need to know

BlackCat (ALPHV): What we know about the MGM hack

With growing threats to Apple devices, Kandji ramps up

EPSS vs CVSS: Will exploit prediction move the needle?

Threat modeling and the supply chain: An essential tool for managing SDLC risk

The art of security chaos engineering

IoT and the supply chain: The road to securing devices

Topics

Special Reports

The 2025 Software Supply Chain Security Report

Upcoming Webinars

ConversingLabs

Topics

Follow us

Subscribe

Special Reports