Blog | ReversingLabs | Paul Roberts (5)

August 3, 2022

Software supply chain security takes center stage at Black Hat 2022

Black Hat is best known for hardware and traditional software exploits, but this year it showcases more software supply chain security issues—marking the shift in the threat landscape.

July 21, 2022

The Week in Cybersecurity: SolarWinds attackers tap Google Drive, malware spreads via Play Store apps

The Week in Cybersecurity highlights: An APT group is using Dropbox and Google Drive to cover up attacks, and malware is spreading via Play Store apps.

July 19, 2022

CISA: Log4j threat will linger for years—so be prepared

A survey of the post-Log4j landscape found few successful hacks linked to it. The bad news? Log4Shell will linger for years — so you need to prepare.

July 8, 2022

The Week in Cybersecurity: NPM removes malicious modules, Microsoft backtracks on macros

This week: fallout from another supply chain attack involving malicious NPM modules. Also: Microsoft backtracks on a pledge to disable Office macros.

June 30, 2022

The Week in Cybersecurity: NATO creates cyber rapid response

Welcome to the The Week in Cybersecurity. This week: International relations intersects with cybersecurity, leverage YARA rules, plus AstraLocker 2.0.

June 23, 2022

ConversingLabs highlights: RSA Conference spotlights software supply chain, critical infrastructure risk

ConversingLabs invited Robert Martin of MITRE and Steve Lipner of Safecode, who spoke at RSAC, to discuss supply chain risk, software assurance and more.

June 8, 2022

MITRE’s System of Trust: A standard for software supply chain security

MITRE’s System of Trust framework is aiming to standardize how software supply chain security is assessed. MITRE's Robert Martin explains.

June 3, 2022

What’s hot at #RSAC? Our picks for the big security show

Two years in, and COVID is still threatening to steal RSAC's mojo. But for those willing to brave Moscone (and those attending virtually), you won’t be disappointed. Here are our picks for must-see talks.

June 1, 2022

Software supply chain risk demands our attention

Software Supply Chain Attacks are a top concern. But tools for monitoring and stopping them lags. Meet ReversingLabs' new platform: secure.software.

May 10, 2022

Update: NPM dependency confusion hacks target German firms

Research by ReversingLabs suggests that dependency confusion attacks on npm repositories have been used to compromise leading German firms in recent weeks.

April 22, 2022

Emotet's back. Here's how to keep from getting hacked

Emotet is back after last year's takedown. It's a favorite of groups like Conti. Dragan Damjanovic of KPMG & Dado Horvat of ReversingLabs give us the latest.

April 8, 2022

Conti pivots as ransomware as a service struggles

The resurgence of the Conti ransomware group is a sign of changes afoot in the global ransomware underground—and more trouble ahead for enterprises.

Software Supply Chain Security

File Security

Security Operations

Products

Technology

Partners

Alliances

Resources

Company

Events

Press