open source

Application security trends: Shift-left security, AI, and open source malware

Application security trends: Shift-left security, AI, and open source malware

| | Application Security, Artificial Intelligence, Malware, open source, shift left
Software is at the heart of business operations across most industries, which means application security has never been more critical. However, as organizations embrace cloud-native architectures, microservices, and open source components, the ...
2024 Sonatype Blog
Cybersecurity Insights with Contrast CISO David Lindner | 03/07/25

Cybersecurity Insights with Contrast CISO David Lindner | 03/07/25

| | codebase, Conditional Access, Cybersecurity, KEV catalog, MFA, open source, patching, Ransomware, security, Vulnerabilities
Insight No. 1. — Ransomware groups are using CISA’s KEV catalog as a runbook  Given that CISA's Known Exploited Vulnerabilities (KEV) catalog highlights the most actively exploited and critical Common Vulnerabilities and ...
AppSec Observer
When Your SaaS Vendor Goes Dark: A Guide to Protecting Your Business

When Your SaaS Vendor Goes Dark: A Guide to Protecting Your Business

| | Best Practices, data protection, open source, small business, software
When a SaaS vendor unexpectedly shuts down, your business faces significant risks. This comprehensive guide provides actionable strategies to recover your data, find alternative solutions, and implement preventative measures to ensure business ...
Deepak Gupta | AI & Cybersecurity Innovation Leader | Founder's Journey from Code to Scale
Behind the Baseline: Reflecting on the launch of the Open Source Project Security Baseline

Behind the Baseline: Reflecting on the launch of the Open Source Project Security Baseline

| | FINOS, open source, Open Source Tools, OpenSSF
It's been a while since I've shared an update on the work Sonatype is doing in the open source ecosystem, so I'm excited to share an update on a few things we're ...
2024 Sonatype Blog
OpenAI vs. DeepSeek: Navigating the AI Trust Paradox in an Era of Geopolitical Tensions

OpenAI vs. DeepSeek: Navigating the AI Trust Paradox in an Era of Geopolitical Tensions

| | AI (Artificial Intelligence), architecture, ChatGPT, DeepSeek, future, Innovation, open source, technology
As geopolitical tensions reshape AI adoption, enterprises struggle to balance OpenAI's compliance frameworks against DeepSeek's cost efficiency. This 2025 analysis reveals critical security vulnerabilities, performance benchmarks, and regulatory risks for global deployments ...
Deepak Gupta | AI & Cybersecurity Innovation Leader | Founder's Journey from Code to Scale
Forging a Better Operator Quality of Life

Forging a Better Operator Quality of Life

| | open source, Red Team, red-team-tools, research
A new Mythic add-on for Windows AgentsMythic provides flexibility to agent developers for how they want to describe and execute techniques. While this is great, it also means that when operators hop from ...
Posts By SpecterOps Team Members - Medium
Assessing your open source software security efficacy

Assessing your open source software security efficacy

| | dependencies, Events and Webinars, FINOS, open source, software supply chain
Open source software has become the foundation of modern application development. With up to 90% of most applications consisting of open source components, organizations — especially in financial services — need to ...
2024 Sonatype Blog

Privacy Concerns with Digital Driver’s Licenses, The Rise of DeepSeek AI

| | AI, AI Risks, china, Cyber Security, cyber threat, Cybersecurity, Data Privacy, Data Security, DeepSeek, DeepSeek AI, Digital Drivers Licenses, digital id, Digital Privacy, drivers license, Episodes, government, Information Security, Infosec, law enforcement, open source, Podcast, Podcasts, police, Privacy, security, technology, Technology Policy, Weekly Edition
In this episode, we explore the rollout of digital driver’s licenses in states like Illinois and the potential privacy issues that come with them. Can digital IDs truly enhance convenience without compromising ...
Shared Security Podcast
The three panes of Nosey Parker Explorer's main page.

Introducing Nosey Parker Explorer

| | CI/CD Security, open source, Tools & Techniques
Introducing Nosey Parker Explorer: an interactive review tool for findings from Nosey Parker - the machine learning powered, multi-phase solution for locating secret exposure. The post Introducing Nosey Parker Explorer appeared first ...
Security Blog | Praetorian
DeepSeek: Revolutionizing AI with Efficiency, Innovation, and Affordability

DeepSeek: Revolutionizing AI with Efficiency, Innovation, and Affordability

| | AI (Artificial Intelligence), AI-enhanced security, future, Innovation, open source, technology
DeepSeek redefines AI with cutting-edge innovations: MoE architecture activates only 37B parameters/token, FP8 training slashes costs, and latent attention boosts speed. Learn why it delivers GPT-4-level performance at 1/20th the cost, reshaping ...
Deepak Gupta | AI & Cybersecurity Innovation Leader | Founder's Journey from Code to Scale
Load more