Red teamers take on AI at DEF CON 31
It takes a village... Researchers play capture the flag to find vulns in tools like ChatGPT — with a White House assist.
Red teamers take on AI at DEF CON 31
ReversingLabs File Enrichment API for Microsoft Sentinel
Learn how ReversingLabs Threat Intelligence integrates with Sentinel to deliver deep visibility and automation that enhances the efficiency of SOC teams.
SLSA 1.0 delivers build provenance: What application security teams need to know
OpenSSF's updated framework is an essential tool for dev teams, but experts say it's incomplete as a supply chain security solution
Modernize your SOC with advanced malware analysis, real supply chain security — and best practices
Your journey toward a modern SOC should start with the right tools for dev and SecOps teams. Here's why — and steps to take.
ReversingLabs Content Pack for Microsoft Sentinel
The content pack provides Sentinel users with example content that works with ReversingLabs TitaniumCloud to tackle malware-related threats and bolster threat intelligence implementations.
The Week in Security: Sunburst attack set off alarms for months before discovery
Welcome to the latest edition of The Week in Security, which brings you the newest headlines from both the world and our team across the full stack of security: application security, cybersecurity, and beyond.
SolarWinds hack: Did DOJ know 6 months earlier?
The Department of Justice stays on the down-low: Poster child for software supply chain security? The plot thickens...
Smart Security Operations: How to Enrich Alerts and Data for SOC Efficiency
When deploying a SOAR tool, it's essential to automatically enrich alerts and data to give SOC analysts more context. Here's how data can be enriched, and a few examples of how to do so.
How to operationalize software bills of materials for incident response
Here's why SBOMs are essential for cybersecurity incident response — and how to put them to work.
RSAC in review: Supply chain security, cyber war and AI
The stakes were raised at RSA Conference 2023: A “hot” cyber war in Ukraine, software supply chain attacks on the rise — and let's not forget about artificial intelligence.
CISA Secure by Design: 'It's a starting point, not an endpoint'
Here's what experts say about the CISA initiative's potential impact on software supply chain security — and security operations.
The rise of malware in the software supply chain – and what to do about it
In a ConversingLabs conversation, Charlie Jones of ReversingLabs talks about risk with supply chain attacks, and what development teams can do to spot malware lurking in signed code.
The Week in Security: A possible Colonial Pipeline 2.0, ransomware takes bite out of American eateries
Welcome to the latest edition of The Week in Security, which brings you the newest headlines from both the world and our team across the full stack of security: application security, cybersecurity, and beyond.
Package names repurposed to push malware on PyPI
What’s in a name? Here's how bad actors are pushing malware on the Python Package Index under the guise of legitimate yet abandoned open source modules.
What traditional app sec tools miss: The monsters in your software supply chain
Matt Rose presents at RSAC 2023 on the mismatch between traditional app sec tools like SCA and modern supply chain threats. Here are highlights from his talk.