Blog | ReversingLabs | AppSec & Supply Chain Security

July 25, 2024

OSC&R report: 95% of organizations face severe software supply chain risk

The report's revelations are important for AppSec risk managers and development teams alike. Here are the key takeaways — and expert analysis.

July 23, 2024

Secure by Default: Lock down your development for better AppSec

Secure by Design's cousin can help make software more secure out of the box by adding guardrails to development. Here's how it helps — and its limitation

July 18, 2024

The top AppSec Substacks to follow

Rev up your application security and software supply chain security engines by subscribing to these six practitioner-curated Substacks.

July 16, 2024

AppSec alert fatigue: 4 ways to reduce burnout — and boost security

Tool sprawl is making alert fatigue a major problem for teams responsible for application security. Here are four ways to combat it in your organization.

June 28, 2024

The Polyfill.io software supply chain attack: Lessons learned

The compromise of the widely used Pollyfill.io CDN contains important lessons for organizations on trust.

June 27, 2024

OASIS Open's push for a software supply chain standard: All together now?

The aim is to build a unifying framework for existing SBOM data models, including CSAF, CycloneDX, OpenVEX, and SPDX. Experts weigh in with key insights.

June 25, 2024

How platform engineering helps you get a good start on Secure by Design

Self-service portals for developers can help organizations overcome challenges to getting off and running with CISA's software security initiative.

June 20, 2024

How to secure mergers & acquisitions from software supply chain attacks

When engaging in mergers and acquisitions (M&A), acquiring organizations are certain to inherit a new software stack that may present security concerns. Here’s how your security team can effectively manage these risks.

June 12, 2024

Why malware matters most: 6 ways to foil software threats faster

Making malware enemy No. 1 should be a top priority for AppSec teams. Here's why you need to shift your team's focus from vulnerabilities to malware.

June 11, 2024

Verizon DBIR 2024: The rise in software supply chain attacks explained

Verizon's DBIR marked a dramatic shift in threats. Learn about it from Verizon — and how to get ahead of software supply chain risk — in the Webinar.

June 10, 2024

How to assess and manage commercial software risk

Major attacks show that commercial software is the principal attack surface. Here’s why – and how your team can mitigate its risks.

May 30, 2024

NSA's zero-trust maturity for AppSec: What you need to know

The new initiative aims to help teams secure application access — and ensure continuous visibility of its workload. Experts weigh in with key insights.

Software Supply Chain Security

File Security

Security Operations

Products

Technology

Partners

Alliances

Resources

Company

Events

Press

AppSec & Supply Chain Security

OSC&R report: 95% of organizations face severe software supply chain risk

Secure by Default: Lock down your development for better AppSec

The top AppSec Substacks to follow

AppSec alert fatigue: 4 ways to reduce burnout — and boost security

The Polyfill.io software supply chain attack: Lessons learned

OASIS Open's push for a software supply chain standard: All together now?

How platform engineering helps you get a good start on Secure by Design

How to secure mergers & acquisitions from software supply chain attacks

Why malware matters most: 6 ways to foil software threats faster

Verizon DBIR 2024: The rise in software supply chain attacks explained

How to assess and manage commercial software risk

NSA's zero-trust maturity for AppSec: What you need to know

Topics

Special Reports

The State of Software Supply Chain Security 2024

Upcoming Webinars

ConversingLabs

AppSec & Supply Chain Security

Topics

Follow us

Subscribe

Special Reports