Dropbox reveals hack: What DevOps can learn from it
Dropbox was hacked last month. The company has now revealed more details — and there are some big surprises.
Dropbox reveals hack: What DevOps can learn from it
-1-1400x732.jpg&w=3840&q=75)
Forrester Security & Risk Forum: Go beyond the software bill of materials
The Forrester Security & Risk Forum tool place this week in Washington D.C. with a full agenda, tackling a range of issues, from the cyber implications of geopolitical disruptions to the privacy and security implications of the Metaverse.
From the Labs: YARA Rule for Detecting LockBit
ReversingLabs’ YARA detection rule for LockBit can help you detect this malicious ransomware in your environment. We break it down for you here.
.webp&w=3840&q=75)
Meet the Latest Update to ReversingLabs Elastic Threat Infrastructure
Our customers rely on ReversingLabs Elastic Threat Infrastructure (TitaniumScale) to quickly scan large volumes of files to identify malware and goodware. Here, we break down the solution’s newest improvements.
The Week in Security: OpenSSL danger downgraded but still real, GitHub exposed
Welcome to the latest edition of The Week in Security, which brings you the newest headlines from both the world and our team across the full stack of security: application security, cybersecurity, and beyond.
Special report: End-to-end supply chain security demands dev and SOC teams shift left together
Security operations centers (SOCs) and developers need to share the responsibility for securing the software supply chain. Find out why in ReversingLabs' latest report.
Reflection attacks: Don’t be part of the problem
Once again, Microsoft is under fire for shipping a service that can easily be misused for DDoS attacks.
National Cyber Director: Higher bar for software supply chain security is key to cyber resilience
Chris Inglis said the government is setting a new bar for supply chain security as the national cybersecurity focus shifts from incident response to cyber resilience.
OWASP at a crossroads: Founder Mark Curphey's call for relevance in the age of DevSecOps
After two decades of raising awareness about the big problems in application security, the Open Web Application Security Project (OWASP) stands at a crossroads.
The Week in Security: Pro-China cyber operation Dragonbridge targets U.S. elections
Welcome to the latest edition of The Week in Security, which brings you top stories from both the world and our team, across the full stack of security: software security, cybersecurity, and beyond.
Google pairs GUAC with SLSA to take a bite out of software supply chain insecurity
Google is putting its weight behind a project to offer a comprehensive view of your software. Enter GUAC: Graph for Understanding Artifact Composition.
The state of CI/CD security: Upgrade your software supply chain tools to maintain velocity and security
Here's what you need to know about the state of CI/CD tools — and why you need to upgrade your tools and approach to deliver secure software at speed.
SBOMs are critical to AppSec — but only the first step in your journey
Here's what to focus on for a comprehensive approach to application security across your entire software development pipeline.
SBOMs are coming for medical devices. Prof. Kevin Fu explains what to expect
The medical device sector is under pressure to improve software supply chain security, and software bills of materials (SBOMs) are front and center. ReversingLabs talks with Professor Kevin Fu of the Archimedes Center at University of Michigan about what to expect.
The Week in Security: Attacks on critical infrastructure and the software supply chain take off
Welcome to the latest edition of The Week in Security, which brings you the newest headlines from both the world and our team across the full stack of security: application security, cybersecurity, and beyond.