Hot Topics

software vulnerability

Understanding Software Bill of Materials (SBOM) and It’s Role in Software Supply Chain

| | centralized inventory, CVE numbers, CVSS scores, executive order, open source, real-time tracking, SBOM, Security Concepts, software bill of materials, software components, software design, Software Development, software inventory, software releases, Software Security, software updates, software vendors, software vulnerability, Supply Chain Attacks, third-party tools, vulnerability reports
In May 2021, the US government signed an Executive Order mandating that software suppliers selling to the government must include a Software Bill of Material… ...
The CISO Perspective
Microsoft Storm-1152 fake accounts CaaS

With Vulnerability Management, Enterprises Seek to Get Proactive

| | AppSec, cyberattack, software vulnerability, Vulnerability Management
It seems every few weeks there’s another major vulnerability. In early December 2021, we had Log4j, the vulnerability in the open source logging library Apache Log4j, which is used near ubiquitously. And ...
Security Boulevard
Log4j Log4Shell patching Security Patches Move Faster

Patching Process Remains a Security Bottleneck

| | enterprise risk management, Ivanti, patch and vulnerability management, patch management, patching, software vulnerability
Patching continues to be overly complex, cumbersome and time-consuming, trends that are likely to persist as remote work increases the complexity and scale of patch management. And that’s a major security risk ...
Security Boulevard
Congress Wants Written Answers from Apple on FaceTime Privacy Glitch

Congress Wants Written Answers from Apple on FaceTime Privacy Glitch

| | Apple, Data Privacy, FaceTime, Industry News, privacy bug, software vulnerability
Apple is not getting off so easily with the FaceTime privacy violation incident. Two members of the US Congress are “deeply troubled” that the company didn’t immediately address the software glitch end ...
HOTforSecurity
US Homeland Security systems run on outdated, unpatched software, audit finds

US Homeland Security systems run on outdated, unpatched software, audit finds

| | DHS, Industry News, security bloggers network, skill gap, software vulnerability, unpatched software, US Homeland Security
The US Department of Homeland Security is pretty bad at digitally protecting national security interests, says an audit report released on March 7 by the agency’s watchdog, the Office of Inspector General ...
HOTforSecurity