4 ways hero culture is killing your security program's effectiveness
Learn why cybersecurity hero culture is a problem — and how companies can avoid its negative effects and develop more resilient security operations.
4 ways hero culture is killing your security program's effectiveness
Attackers leverage PyPI to sideload malicious DLLs
RL discovered two malicious packages and a subsequent larger campaign, showing that the approach is an emerging software supply chain attack method.
5 key takeaways from ESG's software supply chain complexity report
"The Growing Complexity of Securing the Software Supply Chain" report highlights key challenges for application security teams. Here's what you need to know.
5 notable supply chain compromises
2023 was a big year for software security. Here are the key lessons from last year's major attacks to learn from.
Meet the New RL Partner Program
Let’s band together for the love of security
Upgrade your AppSec for a new era
Do you trust your AppSec? Upgrade your approach with binary analysis — the next generation of tooling for the era of software supply chain security.
Increase Your SIEM and SOAR ROI with ReversingLabs
Drive down both mean time to detect and mean time to respond in your SOC.
How to Stop Phishing Attacks Being Missed
Unveiling the Hidden Threats: Enhancing Email Security with Object-Level Analysis
Definitive timeline: Federal guidance on software supply chain security
With the rise in attacks, U.S. agencies have been busy crafting policy to tackle the problem. Here are the major initiatives and mandates that matter.
The Cloudflare source code breach: Lessons learned
This latest incident underscores the continuing risks to organizations posed by both third-party software and leaks of development secrets.
CISO accountability in the era of software supply chain attacks
CISOs today need to act and be treated more like CFOs. Here's what they need to know — and why they should seize the day and prioritize security.
Lessons from the Mercedes-Benz GitHub source code leak
Here's what we know about the automaker's latest secrets breach — and lessons your security team can draw from it.
HPE, Microsoft breach disclosures mark new era of CISO accountability
New revelations show Russia’s SVR has stepped up cyber-espionage. They also spotlight how public companies are on the hook with the SEC’s disclosure laws.
GitGot: GitHub leveraged by cybercriminals to store stolen data
ReversingLabs researchers found two suspicious npm packages that demonstrate how GitHub is increasingly being used to easily deploy malware in novel ways.
GitHub Actions hack bolsters case for complex binary analysis
Here are the key takeaways from the threat research — and why you need to evolve your application security approach with complex binary analysis and reproducible builds.