Blog | ReversingLabs | Carolynn van Arsdale (4)

June 1, 2023

The state of app sec with Chris Romeo: The year of the application is near

ConversingLabs caught up with Chris Romeo of Kerr Ventures at RSA Conference 2023 to talk about the state of application security. Watch (or listen) — and learn.

June 1, 2023

The Week in Security: Barracuda email flaw left open for months, calls for AI governance turn existential

This week: Barracuda’s appliances had an undetected flaw, which was abused by hackers for months. Also: Could AI bring on an ‘extinction event?’

May 25, 2023

The Week in Security: Lazarus targets Microsoft servers in espionage campaign, the future of PyPI

This week: North Korean APT Lazarus uses Microsoft IIS servers to carry out espionage. Also: What’s the future of PyPI amidst continuing attacks?

May 24, 2023

Software supply chain security reality check: Practitioners reveal growing concern

In a recent survey, 300 practitioners were asked about the state of supply chain security. Here are takeaways from a webinar discussion about the survey.

May 18, 2023

The Week in Security: Capita AWS bucket exposes benefits data, Toyota leaks customer data on 2M

This week: An unsecured AWS bucket exposed English citizen’s data. Also: A data breach on Toyota leaked the data of more than 2 million customers.

May 11, 2023

The Week in Security: Coalition takes down Russia's Snake espionage tool, GitHub plugs API leaks

U.S. and other countries take down Russia’s Snake malware, used to conduct global espionage. Also: GitHub auto-blocks API key and token leaks for all repos.

May 4, 2023

The Week in Security: Sunburst attack set off alarms for months before discovery

The DOJ detected the SolarWinds Orion breach six months prior to public disclosure. Also: anxiety, fear, depression - the life of a ransomware criminal.

April 27, 2023

The Week in Security: A possible Colonial Pipeline 2.0, ransomware takes bite out of American eateries

This week: Canadian gas pipeline explosion could have been caused by a cyber attack. Also: Financial services firm NCR hit with a ransomware attack.

April 24, 2023

What traditional app sec tools miss: The monsters in your software supply chain

Matt Rose will present at RSAC 2023 on the mismatch between traditional app sec tools like SCA and modern supply chain threats. Here are key highlights.

April 20, 2023

The Week in Security: 3CX attack caused by earlier supply chain hack, malware in Google Play

This week: One software supply chain attack caused another, making it a first for the industry. Also: Malware spreads via apps in the Google Play Store.

April 19, 2023

Secrets Exposed: The why, the how – and what to do about – secrets security

Secrets are increasingly exposed in code, creating a field-day for malicious actors. Here are key takeaways from our Secrets Exposed special report.

April 19, 2023

What’s hot at RSA Conference 2023: 8 must-see software supply chain security talks

Software supply chain security is taking center-stage at RSAC 2023. Here are the talks you don't want to miss.

Software Supply Chain Security

File Security

Security Operations

Products

Technology

Partners

Alliances

Resources

Company

Events

Press

The state of app sec with Chris Romeo: The year of the application is near

The Week in Security: Barracuda email flaw left open for months, calls for AI governance turn existential

The Week in Security: Lazarus targets Microsoft servers in espionage campaign, the future of PyPI

Software supply chain security reality check: Practitioners reveal growing concern

The Week in Security: Capita AWS bucket exposes benefits data, Toyota leaks customer data on 2M

The Week in Security: Coalition takes down Russia's Snake espionage tool, GitHub plugs API leaks

The Week in Security: Sunburst attack set off alarms for months before discovery

The Week in Security: A possible Colonial Pipeline 2.0, ransomware takes bite out of American eateries

What traditional app sec tools miss: The monsters in your software supply chain

The Week in Security: 3CX attack caused by earlier supply chain hack, malware in Google Play

Secrets Exposed: The why, the how – and what to do about – secrets security

What’s hot at RSA Conference 2023: 8 must-see software supply chain security talks

Topics

Special Reports

The State of Software Supply Chain Security 2024

Upcoming Webinars

ConversingLabs

Topics

Follow us

Subscribe

Special Reports