Products & Technology
Announcing RL Spectra Analyze Version 9.5
Spectra Analyze v9.5 Release Highlights RL Spectra Analyze empowers all levels of the SOC with a private, in-depth, malware analysis workbench. Analysts, incident responders, and threat hunters are enabled with distinct threat ...
Devs: Vet Your VS Code Plugins with Spectra Assure Community
The steady flow of news about malicious attacks on open source repositories like npm, PyPi, RubyGems and NuGet can be deceptive. Open source dependencies are only part of the software supply chain ...
3CX’s Software Supply Chain Compromise: Lessons Learned
About two years after 3CX's supply chain compromise, the voice-over-IP vendor has remade its software development process and continuous delivery/continuous integration (CI/CD) pipeline to prioritize the security, integrity, and resilience of its ...
SAFE and Trusted: Why the Spectra Assure Community Badge Belongs on Your Open Source Project
Here’s the thing about open-source software — it’s a gift. Someone out there wrote code and said, “Here, I’m sharing this code with you. Review it, use it, improve it, create something ...
How to Speed Up TPRM Approvals with Spectra Assure
In the world of third-party software procurement, speed is often at odds with security. Risk managers and procurement officers know the pain: a single software request can trigger weeks, sometimes months, of ...
Accelerate PQC Migration: How to Leverage CBOMs for Cryptographic Asset Discovery
As quantum computing threatens to undermine today’s cryptographic standards, organizations must move quickly to achieve crypto-agility and secure their software supply chains. This blog post explores how a Cryptography Bills of Materials ...
Why Using SCA to Build Your SBOMs is a Risky Proposition
Organizations that generate software bills of materials (SBOM) by feeding software manifests into software composition analysis (SCA) tools only capture 49.91% of the components that make up final, published software packages, a ...
How Spectra Assure’s SaaSBOM Delivers Software Transparency
In today’s modern interconnected world, software is rarely designed to function in isolation. Applications increasingly rely on external services and APIs to extend their functionality and implement useful features. Development teams can ...
NIST Adversarial ML Guidance: How RL Can Secure Your Organization
The National Institute of Standards and Technology’s latest guidance on how to protect applications from adversarial machine learning (ML) should serve as a solid starting point for understanding and addressing the risks ...
What is the xBOM?
The software supply chain has never been more complex — or more critical to secure. For years, the Software Bill of Materials (SBOM) has been the go-to tool for documenting components within ...
