ReversingLabs researchers have uncovered a widespread campaign to install malicious npm modules that are harvesting sensitive data from forms embedded in mobile apps and websites.
International relations intersects with cybersecurity, learn how to leverage YARA rules, plus new developments on AstraLocker 2.0.
SBOM Facts: Know what's in your software to fend off supply chain attacks
ReversingLabs recently discovered instances of the AstraLocker 2.0 malware distributed directly from Microsoft Word files used in phishing attacks.
Austrian group KNOTWEED spreads malware via Microsoft products, new malware-infested apps pop up in the Google Play store, and mo
The RSA Conference brings some of the brightest minds in information security together in one place.
Omer Gil and Daniel Krivelevich outlined the top CI/CD security risks at RSA Conference 2022. Here's what your software security team needs to know.
A survey of more than 300 technology professionals found widespread concern about supply chain attacks, but only sporadic efforts to detect such attacks.
ReversingLabs delivered a game-show style review of its survey on software supply chain security at RSA Conference. Here are the questions and answers.
MITRE’s System of Trust framework is aiming to standardize how software supply chain security is assessed. MITRE's Robert Martin explains.
It's two years in, and COVID is still threatening to steal RSA Conference's mojo. But for those willing to brave Moscone in San Francisco (and those attending virtually), you won’t be disappointed. Here are our picks for must-see talks.
The growing number of software supply chain attacks is putting pressure on validation of software integrity and authenticity.
Python packages can contain sensitive information. Here's how software development teams can keep secrets secret
Package repository content can be different from source code repository content. Here's what your software team needs to know.