<img height="1" width="1" style="display:none" src="https://www.facebook.com/tr?id=1076912843267184&amp;ev=PageView&amp;noscript=1">
News
April 22, 2024

A Final Exam for Software Supply Chain Protection | ReversingLabs

ReversingLabs’ Director of Product Management Charlie Jones explains how the attack surface within today’s software supply chains has grown exponentially.
April 3, 2024

SecurityWeek: VulnerabilitiesCVE and NVD – A Weak and Fractured Source of Vulnerability Truth

The Common Vulnerabilities and Exposures (CVE) List and the consequent National Vulnerability Database (NVD) can no longer be considered a single central source of vulnerability truth.
March 28, 2024

SC Media: Odd NuGet package for industrial equipment raises espionage concerns

ReversingLabs Threat Researcher Petar Kirhmajer published a blog post detailing the research team’s findings on Tuesday.
March 27, 2024

The Hacker News: Sketchy NuGet Package Likely Linked to Industrial Espionage Targets Developers

Threat hunters have identified a suspicious package in the NuGet package manager that's likely designed to target developers working with tools made by a Chinese firm that specializes in industrial- and digital equipment manufacturing.
March 26, 2024

SecurityWeek: Suspicious NuGet Package Harvesting Information From Industrial Systems

A suspicious NuGet package likely targets developers working with technology from Chinese firm Bozhon.
March 16, 2024

TechTarget: CISA software supply chain security form omits SBOMs

Federal suppliers now have a self-attestation deadline amid ongoing efforts to secure software supply chains.