What You Need to Know About the EU Cyber Resilience Act

What You Need to Know About the EU Cyber Resilience Act

Understand what the CRA entails and how to comply.    ... Read More
Navigating the Shift: Unveiling the changes in PCI DSS version 4

Navigating the Shift: Unveiling the changes in PCI DSS version 4

| | AppSec, Compliance
Gain insights in the latest changes in PCI DSS version 4 with this quick overview, highlighting the primary changes and how to best prepare for them ... Read More
From Theory to Practice: Navigating NIST's CI/CD Security Strategies

From Theory to Practice: Navigating NIST’s CI/CD Security Strategies

| | Explainers
On August 30, 2023, NIST published SP 800-204D, an Initial Public Draft (IPD) Named: “Strategies for the Integration of Software Supply Chain Security in DevSecOps CI/CD pipelines”. The publication takes the SSDF's high-level policies and sets a guideline for how to comply to them using CI/CD pipelines. With this, you ... Read More
Supply Chain Attacks Overflow: PyPI Suspended New Registrations

Supply Chain Attacks Overflow: PyPI Suspended New Registrations

On May 20th, in an unprecedented move, PyPI (the official Python Package manager) announced they are temporarily suspending new users and new projects registration. This dramatic announcement follows a long line of incidents in which malicious packages were uploaded to PyPI, as well as other package managers. Following this topic ... Read More