Blog | ReversingLabs (15)

March 12, 2024

BIPClip: Malicious PyPI packages target crypto wallet recovery passwords

RL has discovered a campaign using malicious PyPI packages posing as open-source libraries to steal BIP39 mnemonic phrases used for crypto wallet recovery.

March 11, 2024

SBOMs and medical devices: An essential step — but no security cureall

The FDA now requires medical device manufacturers to produce a software bill of materials to ensure supply chain security. Here’s what you need to know.

March 7, 2024

Bad Actors are Going to School on Sandboxes: Here's What to Do About It!

AI-driven static binary analysis is your secret weapon to leap ahead of advanced threats.

March 7, 2024

5 reasons you should consider a career in application security

There are many reasons to consider a role AppSec. But one stands out: Software supply attacks are creating job security and opportunity.

March 6, 2024

NIST CSF 2.0: Better risk management for the new era of supply chain security

NIST's Cybersecurity Framework 2.0 has been released, complete with a new focus on software supply chain security. Here are key takeaways for your team.

March 5, 2024

NIST updates supply chain guidance: 3 ways to pump up your CI/CD security

The National Institute of Standards and Technology has beefed up its guidelines for securing CI/CD environments. Are you ready to bulk up your program?

March 3, 2024

Level up your YARA game

Learn how to apply YARA rules for threat detection, searching, hunting and more.

February 29, 2024

All SBOMs are not created equal: What's required for them to be effective

Here are key challenges with SBOMs, how tools affect their usefulness — and what it will take to make them effective at software supply chain security.

February 28, 2024

Secure your AI development tools: 4 key questions to ask

When using AI tools including GitHub Copilot, your security team must be aware of — and protect against — certain risks. Here are the top considerations.

February 27, 2024

Lessons in threat modeling: How attack trees can deliver AppSec by design

Here's what development and application security teams need to know about using attack trees in tandem with threat modeling to lock down their software.

February 22, 2024

Operation Cronos and the LockBit takedown: What we know

The U.S., U.K., Canada and eight partner countries have disrupted the LockBit ransomware group. Here are the key takeaways, along with expert insights.

February 21, 2024

4 ways hero culture is killing your security program's effectiveness

Learn why hero culture is a problem — and how companies and the industry can avoid its negative effects and develop more resilient security operations.

Software Supply Chain Security

File Security

Security Operations

Products

Technology

Partners

Alliances

Resources

Company

Events

Press

BIPClip: Malicious PyPI packages target crypto wallet recovery passwords

SBOMs and medical devices: An essential step — but no security cureall

Bad Actors are Going to School on Sandboxes: Here's What to Do About It!

5 reasons you should consider a career in application security

NIST CSF 2.0: Better risk management for the new era of supply chain security

NIST updates supply chain guidance: 3 ways to pump up your CI/CD security

Level up your YARA game

All SBOMs are not created equal: What's required for them to be effective

Secure your AI development tools: 4 key questions to ask

Lessons in threat modeling: How attack trees can deliver AppSec by design

Operation Cronos and the LockBit takedown: What we know

4 ways hero culture is killing your security program's effectiveness

Topics

Special Reports

The 2025 Software Supply Chain Security Report

Upcoming Webinars

ConversingLabs

Topics

Follow us

Subscribe

Special Reports