Blog | ReversingLabs | AppSec & Supply Chain Security (7)

February 27, 2024

Lessons in threat modeling: How attack trees can deliver AppSec by design

Here's what development and application security teams need to know about using attack trees in tandem with threat modeling to lock down their software.

February 15, 2024

5 key takeaways from ESG's software supply chain complexity report

A new report from Enterprise Strategy Group highlights key challenges stemming from the complexity of modern software development. Here are key takeaways.

February 14, 2024

5 notable supply chain compromises

2023 was a big year for software security. Here are the key lessons from last year's major attacks to learn from.

February 13, 2024

Software supply chain security: Upgrade your AppSec for a new era

Do you trust your AppSec? Upgrade your approach with complex binary analysis — the next generation of tooling for the era of software supply chain security.

February 8, 2024

OWASP Top 10 for LLM 2.0: 3 key AppSec focus areas emerge

A survey of practitioners drove key areas of focus for the vulnerability list for AI models: data privacy, safety and bias, and mapping of vulnerabilities.

February 7, 2024

Definitive timeline: Federal guidance on software supply chain security

Check out this timeline that lists the major policy items released by the federal government related to software supply chain security.

February 6, 2024

The Cloudflare source code breach: Lessons learned

This latest incident underscores the continuing risks to organizations posed by both third-party software and leaks of development secrets alike.

February 5, 2024

CISO accountability in the era of software supply chain attacks

CISOs need to be treated (and be treated by others) like CFOs. Here's what they need to know — and how they can seize the day and prioritize security.

February 1, 2024

Lessons from the Mercedes-Benz GitHub source code leak

Here's what we know about the automaker's latest secrets breach — and lessons your security team can draw from it.

January 30, 2024

HPE, Microsoft breach disclosures mark new era of CISO accountability

New revelations show Russia’s SVR has stepped up cyber-espionage. They also spotlight how public companies are on the hook with the SEC’s disclosure laws.

January 17, 2024

GitHub Actions hack bolsters case for complex binary analysis

Here are key takeaways from the research — and why you need to evolve your application security approach with binary analysis and reproducible builds.

January 16, 2024

Key Takeaways from the 2024 State of SSCS Report

ReversingLabs has released its annual report covering the state of software supply chain security. Learn top trends and get unique insights.

Software Supply Chain Security

File Security

Security Operations

Products

Technology

Partners

Alliances

Resources

Company

Events

Press

AppSec & Supply Chain Security (7)

Lessons in threat modeling: How attack trees can deliver AppSec by design

5 key takeaways from ESG's software supply chain complexity report

5 notable supply chain compromises

Software supply chain security: Upgrade your AppSec for a new era

OWASP Top 10 for LLM 2.0: 3 key AppSec focus areas emerge

Definitive timeline: Federal guidance on software supply chain security

The Cloudflare source code breach: Lessons learned

CISO accountability in the era of software supply chain attacks

Lessons from the Mercedes-Benz GitHub source code leak

HPE, Microsoft breach disclosures mark new era of CISO accountability

GitHub Actions hack bolsters case for complex binary analysis

Key Takeaways from the 2024 State of SSCS Report

Topics

Special Reports

The State of Software Supply Chain Security 2024

Upcoming Webinars

ConversingLabs

AppSec & Supply Chain Security (7)

Topics

Follow us

Subscribe

Special Reports