CSOonline

AI development pipeline attacks expand CISOs’ software supply chain risk

Malicious campaigns targeting code used by developers of AI applications underscore the need to develop comprehensive risk-based programs around software dependencies and components. Widespread flaws ...
Security

Can you trust commercial software? Tackling third-party software risk

Supply chain security is rapidly emerging as a material risk for enterprise software buyers. Yet, despite best efforts from regulators to hold software publishers accountable, enterprise buyers ...
CSOonline

GitGuardian launches ggcanary project to help detect open-source software risks

Code security platform provider GitGuardian has announced the launch of a new open-source canary tokens project to help organizations detect compromised developer and DevOps environments. According to ...
Electronic Design

Securing Your Software Supply Chain: Recognize the Risks and Solutions

Why the software supply chain is important. How software security impacts organizations across all industries. How the ubiquity of open-source software impacts organizations’ software supply-chain ...