Modernising security starts and ends with culture
CISOs and security professionals are in an unenviable position: they deal with relentless cyberattacks from across an expanding attack surface, ...
Tag: Synopsys Software Integrity Group
Study points to the prevalence of software supply chains in cloud-native apps
The Enterprise Strategy Group report, Walking the Line: GitOps and Shift Left Security: Scalable, Developer-centric Supply Chain Security Solutions, shows ...
Managing the rising risks of bad bots
The IEEE defines a robot as an autonomous machine capable of sensing its environment, carrying out computations to make decisions, ...
What’s your password?
In my opinion, one of the most loathed activities in the annals of computing history is the use of passwords ...
FutureCISO Security Alert: Okta hacking spotlights how breaches are reported
Cloud-based authentication service provider, Okta, is the latest tech company to experience a breach of their systems. Ransomware group Lapsus$ ...
FutureCISO Security Alert: UN hacking a case of basic security hygiene ignored?
To argue that the UN breach of April 2021 is an old story is to ignore that the hack occured ...
FutureCISO Security alert: Check your apps for vulnerable opensource parts
Analysis of more than 1,500 commercial codebases finds that opensource security, license compliance, and maintenance issues are pervasive in every ...
FutureCIO Security alert: new zero-day exploit in Desktop Window Manager
The CVE-2021-28310 is a zero-day exploit, first discovered inside the Desktop Window Manager, that allows attackers to execute arbitrary code ...
1.5 minutes to hack a Tesla car
Developing 100% secure automotive systems is not realistic, so automotive organisations need to consider and deploy appropriate measures for enabling ...
What the sale of 3.2 billion records teaches us
Labelled as Combination of Many Breaches (COMB), the 3.2 billion records now for sale is not a single breach but ...
Patching hampers open-source security efforts
Global survey of 1,500 IT professionals finds that 40% of respondents worldwide had delivery schedules disrupted to address open-source vulnerabilities
Warning: 4-digit rise in threats hiding as e-learning platforms in SEA
COVID-19 sees 4-digit increase in digital threats masked as e-learning platforms in Southeast Asia. Education has become a new target
Recurring challenges with DevSecOps in Asia
Back in 2008, Patrick Debois and Andrew Clay Shafer drew the beginnings of DevOps while discussing the concept of agile ...
Getting back to work securely
As offices begin to power up their office infrastructure there is a need for IT and security teams to conduct ...
Enhancing work from home outcomes
According to the European Centre for Disease Prevention and Control 378,041 cases of COVID-19 have been reported since 31 December ...
Securing the connection for remote workers
For CIOs the question is weighing the value of VPN on a private network against VPN on the internet (Thousands ...
Synopsys acquires Tinfoil Security to expand DAST, add API security testing
Through the acquisition of Tinfoil Security, Synopsys is expanding its DAST capabilities and adding API security testing capabilities.
How to cyber security: Software is critical infrastructure
Why software is critical infrastructure and deserves the same security investment as other critical infrastructure.
