June 14, 2023
In this ConversingLabs Cafe interview, Naveen Srinivasan, a maintainer of the OpenSSF Security Scorecard, talks about evaluating software dependency risk.
May 1, 2023
The stakes were raised at RSAC 2023: A “hot” cyber war in Ukraine, supply chain attacks on the rise — and let's not forget about artificial intelligence.
April 27, 2023
Charlie Jones of ReversingLabs explains risk with supply chain attacks — and what development teams can do to spot malware lurking in signed code.
April 26, 2023
RSA Conference is back big in 2023, with large language models buzzing: Al to fight AI, and generative AI and supply chain security.
April 24, 2023
What’s in a name? Here's how bad actors are pushing malware on the Python Package Index under the guise of legitimate yet abandoned open source modules.
April 24, 2023
Matt Rose will present at RSAC 2023 on the mismatch between traditional app sec tools like SCA and modern supply chain threats. Here are key highlights.
April 19, 2023
Secrets are increasingly exposed in code, creating a field-day for malicious actors. Here are key takeaways from our Secrets Exposed special report.
April 19, 2023
Software supply chain security is taking center-stage at RSAC 2023. Here are the talks you don't want to miss.
April 18, 2023
There is so much to take in at RSAC. Cut through the noise with our list of threat-focused talks you don't want to miss.
March 21, 2023
Software secrets are targeted by malicious actors. Here are three key steps to mitigate risk — and best practices you can take to prevent future breaches.
March 14, 2023
Here’s how attackers are finding software development secrets buried in code repositories — and exploiting them.
February 23, 2023
The Circle CI breach and other recent hacks expose why the secrets problem is so prolific. Learn the why in this first post in our Secrets Revealed series.