Security Automation: Where Does It Fit In Your Secure SDLC?

Security Automation: Where Does It Fit In Your Secure SDLC?

|
In the fast-paced environment of software development, teams are constantly finding themselves having to do more with less. The pressure to produce new features and push out new versions on a shortened time frame can feel overwhelming for software development teams, no matter if you are a small startup or ... Read More
Top 5  Open Source Security Vulnerabilities in June 2019

Top 5 Open Source Security Vulnerabilities in June 2019

|
As we enter the truly sweltering months of summer, our hardworking research team has taken comfort in blasting their AC up to full force to put together a list of June’s top 5 new open source security vulnerabilities. Whether it’s snowing or sunny, the WhiteSource database continues to automatically aggregate ... Read More
Patch management best practices

8 Patch Management Best Practices To Implement in 2019 to Close the Door on Attackers

|
You’ve read news articles about the latest “zero-day” exploits spreading across the web. These exploits are great news fodder, but zero-day attacks aren’t the most dangerous enemy to your organization. Patches are.c What does your patch management process look like? Do you have one? A patch is a small fix ... Read More
Top 5 New Open Source Security Vulnerabilities in May 2019

Top 5 New Open Source Security Vulnerabilities in May 2019

|
May brought us the full bloom of spring, a long Memorial Day weekend, and some nasty open source vulnerabilities, along with just a touch of drama in the open source community. Now that May is behind us, our hard-working Knowledge Team braved the spring allergies and put together our monthly ... Read More
Top 5 Open Source Vulnerabilities for April 2019

Top 5 Open Source Vulnerabilities for April 2019

|
April showers may bring May flowers, but they also bring with them some real doozies when it comes to open source vulnerabilities. Spring is in the air, but our hard-working knowledge team at WhiteSource is still at it, seeking out the open source vulnerabilities that the public needs to know ... Read More
Top 5 New Open Source Security Vulnerabilities in March 2019

Top 5 New Open Source Security Vulnerabilities in March 2019

|
We all sprang forward with daylight savings this past March, losing an hour of sleep and hopefully giving spring a much-needed nudge. However, even daylight saving didn’t keep our hardworking knowledge team from burning the midnight oil and reviewing all of the recent open source security vulnerabilities in our database ... Read More
PCI Software Security Framework: All You Need to Know

PCI Software Security Framework: All You Need to Know

|
In January, the Payment Card Industry Security Standards Council (PCI SSC) released a new security framework for software vendors that develop payment applications. The new framework is replacing the current guidelines of the PCI Payment Application Data Security Standard (PCI PA-DSS) which will be retired in the coming years. Before ... Read More
Inspiring The Next Generation Of Women In Tech At WhiteSource

Inspiring The Next Generation Of Women In Tech At WhiteSource

|
With International Women’s Day upon us, we wanted to hear from some of the ladies who are leading the way forward at our company on what brought them into this field, their challenges, and their advice for other women considering tech as a potential career. We caught up with Ofir ... Read More
Top 5 New Open Source Vulnerabilities in February 2019

Top 5 New Open Source Vulnerabilities in February 2019

|
It has been said that March comes in like a lion and goes out like a lamb. It’s still early to determine how accurately that applies to this month, but one thing is certain: February's list of top five open source security vulnerabilities reveals some gnarly and highly critical beasts ... Read More
Top 5 New Open Source Vulnerabilities in January 2019

Top 5 New Open Source Vulnerabilities in January 2019

|
January kicks us off with a number of high profile projects that should ring some bells, reporting vulnerabilities which are worthy of our attention and remediations. WhiteSource’s Knowledge Group has been hard at work, pouring through our lists of newly collected vulnerabilities to bring our readers the info they need ... Read More