Supply Chain Security
CISA, NSA, and ODNI issue new guidance on managing open source software and SBOMs to maintain awareness on software security.
Hi, what are you looking for?
SecurityWeek
All posts tagged "SBOM"
Government
CISA unveils a new Hardware Bill of Materials (HBOM) framework for buyers and sellers to communicate about components in physical products.
Supply Chain Security
By having a golden image you will put a process in place that allows you to quickly take action when a vulnerability is found...
Supply Chain Security
If after eighteen months, meaningful use of SBOMs is unachievable, we need to ask what needs to be done to fulfill Biden’s executive order.
Application Security
Lineaje introduces SBOM360 Hub, an exchange allowing software producers, sellers, and consumers to publish, share and use SBOMs and related compliance artifacts.
Supply Chain Security
SBOMs can be used for managing risk and determining vulnerability impact, but it’s very hard to build holistic risk models when the data is...
Supply Chain Security
Endor Labs has introduced an OWASP-style listing of the most important or impactful risks inherent in the use of open source software (OSS).
Risk Management
The supply chain threat is directly linked to attack surface management, but the supply chain must be known and understood before it can be...
Supply Chain Security
Chainguard OpenVEX Spec adds clarity to Supply Chain Vulnerability warnings specifications to help software vendors and maintainers communicate precise metadata about the vulnerability status...
Application Security
A new report finds that barely 1% of all SBOMs being generated today meets the “minimum elements” defined by the U.S. government.
Supply Chain Security
The U.S. government’s push for mandatory SBOMs has sent cybersecurity buyers and sellers scrambling to understand the ramifications and prepare for downstream side-effects.
Identity & Access
Okta expands scope of October breach, saying hackers stole names and email addresses of all its customer support system users.
Vulnerabilities
Malware & Threats
Artificial Intelligence
Supply Chain Security
Artificial Intelligence
ICS/OT
Palo Alto Networks has launched a new rugged firewall for industrial environments and announced several OT security improvements.
Security Architecture
Malware & Threats
