Blog | ReversingLabs (12)

March 26, 2024

Suspicious NuGet package grabs data from industrial systems

Espionage has long been a driver for malicious cyber campaigns. Here's what the RL research team knows about the suspicious SqzrFramework480 campaign.

March 21, 2024

Memory-safe languages and security by design: Key insights, lessons learned

Memory safety is one of the most stubborn and dangerous software weaknesses. Here are key insights and takeaways from a new Google report on the issue.

March 20, 2024

7 ways to put your code on a diet — and improve AppSec in the process

Code bloat is at the root of many security problems. Here's how development teams can bolster application security with more efficient code.

March 18, 2024

How CISA’s secure software development attestation form falls short

Here’s what we know about the government's new software attestation form — and what needs to change to better manage modern software supply chain risk.

March 13, 2024

Gartner outlines top cybersecurity trends — and (spoiler alert) AI is No. 1

Here's a rundown of the top cybersecurity trends of this year — and what your team needs to know about them. AI, for one, has pros and cons for security.

March 12, 2024

BIPClip: Malicious PyPI packages target crypto wallet recovery passwords

RL has discovered a campaign using malicious PyPI packages posing as open-source libraries to steal BIP39 mnemonic phrases used for crypto wallet recovery.

March 11, 2024

SBOMs and medical devices: An essential step — but no security cureall

The FDA now requires medical device manufacturers to produce a software bill of materials to ensure supply chain security. Here’s what you need to know.

March 7, 2024

Bad Actors are Going to School on Sandboxes: Here's What to Do About It!

AI-driven static binary analysis is your secret weapon to leap ahead of advanced threats.

March 7, 2024

5 reasons you should consider a career in application security

There are many reasons to consider a role AppSec. But one stands out: Software supply attacks are creating job security and opportunity.

March 6, 2024

NIST CSF 2.0: Better risk management for the new era of supply chain security

NIST's Cybersecurity Framework 2.0 has been released, complete with a new focus on software supply chain security. Here are key takeaways for your team.

March 5, 2024

NIST updates supply chain guidance: 3 ways to pump up your CI/CD security

The National Institute of Standards and Technology has beefed up its guidelines for securing CI/CD environments. Are you ready to bulk up your program?

March 3, 2024

Level up your YARA game

Learn how to apply YARA rules for threat detection, searching, hunting and more.

Software Supply Chain Security

File Security

Security Operations

Products

Technology

Partners

Alliances

Resources

Company

Events

Press

Suspicious NuGet package grabs data from industrial systems

Memory-safe languages and security by design: Key insights, lessons learned

7 ways to put your code on a diet — and improve AppSec in the process

How CISA’s secure software development attestation form falls short

Gartner outlines top cybersecurity trends — and (spoiler alert) AI is No. 1

BIPClip: Malicious PyPI packages target crypto wallet recovery passwords

SBOMs and medical devices: An essential step — but no security cureall

Bad Actors are Going to School on Sandboxes: Here's What to Do About It!

5 reasons you should consider a career in application security

NIST CSF 2.0: Better risk management for the new era of supply chain security

NIST updates supply chain guidance: 3 ways to pump up your CI/CD security

Level up your YARA game

Topics

Special Reports

The State of Software Supply Chain Security 2024

Upcoming Webinars

ConversingLabs

Topics

Follow us

Subscribe

Special Reports