Sonatype Archives

Unauthorized Users Reportedly Gain Access to Anthropic’s Mythos AI Model

Jeffrey Burt | April 22, 2026 | AI cybersecurity risks, AI frontier models, Aisle AI, Anthropic Mythos, DeepSeek R1, IBM Consulting, OpenAI GPT-5.4-Cyber, Palo Alto Networks, Palo Alto Networks Unit 42, Project Glasswing, Sonatype, VIdoc Security, vulnerability detection, Vulnerability Exploits

A group of unauthorized users reportedly has gained access to Anthropic’s controversial Claude Mythos Preview AI frontier model despite the AI vendor’s efforts to keep it out of public hands by limiting ...

Security Boulevard

Securing the AI Era: Sonatype Safeguards Open Source Software Supply Chains

John D. Boyle | August 7, 2025 | AI, AI software security, black hat, BlackHatUSA2025, DevSecOps, Log4j, MLOps security, open source, risk management Secure software development, SCA, sdlc, Securing open source, Software Composition Analysis, software supply chain security, Sonatype, SSSC

Open source drives modern software—but with innovation comes risk. Learn how Sonatype secures the software supply chain to enable safer, faster delivery ...

Security Boulevard

Navigating Compliance: Ensuring Your Software Meets Regulatory Standards

Jared Harris | October 5, 2024 | Compliance, DEVOPS, SBOM, software supply chain, Sonatype

As the regulatory landscape continues to evolve, organizations face increasing pressure to comply with standards such as the Executive Order on Improving the Nation’s Cybersecurity. This panel will guide you through the ...

Securing Your Code: Combating Malware in the Software Supply Chain

Jared Harris | September 26, 2024 | DEVOPS, Malware, software supply chain, Sonatype

Malware has emerged as one of the most significant threats to modern software development, especially within open-source ecosystems. This panel will explore the rise of malware attacks on the software supply chain ...

Malicious PyPI Package ‘Pytoileur’ Targets Windows and Leverages Stack Overflow for Distribution

Steven J. Vaughan-Nichols | May 29, 2024 | Malware, PyPI, python, Sonatype, windows malware

Another day, another PyPI malware package. But this one has a new way to (try to) sneak into your computer ...

Security Boulevard

Highlights from the New U.S. Cybersecurity Strategy

BrianKrebs | March 2, 2023 | A Little Sunshine, Ballistic Ventures, Brian Fox, CHIPS Act, Emotet, Executive Order (EO) 13984, Internet of things, Keith Alexander, National Cyber Investigative Joint Task Force, National Cybersecurity Strategy 2023, Solar Winds breach, Sonatype, Ted Schlein, The Coming Storm

The Biden administration today issued its vision for beefing up the nation's collective cybersecurity posture, including calls for legislation establishing liability for software products and services that are sold with little regard ...

Krebs on Security

Adaptavist Offers Enterprise DevSecOps Solution With Sonatype Partnership

Deb Schalm | December 1, 2020 | Adaptavist, Sonatype

December 01, 2020 04:03 AM Eastern Standard Time LONDON–(BUSINESS WIRE)–Adaptavist, a digital transformation leader, today announced it has joined the Sonatype partner programme as a Platinum Enterprise Partner. The strategic partnership allows ...

Security Boulevard

Sonatype and Fugue Partner to Shift Cloud Security Left and Ensure Continuous Policy Compliance

Deb Schalm | November 12, 2020 | Fugue, Sonatype

Innovative solution empowers developers to deliver secure applications and automatically help them configure secure and policy compliant cloud infrastructure Fulton, MD and Frederick, MD – Thursday, Nov. 12, 2020 – Sonatype, the leading ...

Security Boulevard

The DevSecOps Landscape is Maturing – We Want to Hear About Your Journey

DJ Schleen | February 24, 2020 | DevOps culture, DevSecOps, DevSecOps Community Survey, Sonatype, survey

Time is running out to take part in Sonatype’s annual DevSecOps Community Survey. Share your stories with others in the space. The race to out-innovate one’s competition has led to high-performing organizations ...

Security Boulevard

IAST Integrate SAST Tools with DevSecOps

DevOps Chat: Forrester Wave Leaders Discuss SCA

Alan Shimel | April 17, 2019 | Forrester Wave, open source, SCA, secure code, Software Composition Analysis, Sonatype, Synopsys, WhiteSource

Forrester recently released its “Forrester Wave Software Composition Analysis SCA for Q2 2019,” highlighting the leaders in this fast-growing category. We had a chance to sit down with three of the companies ...

Security Boulevard

Sonatype

Senator Sanders Wants to Own AI Companies — and Hand America’s Adversaries the Keys

NIST’s Nine: The PQC Signature Race Moves to Round Three

The Quantum Arms Race: Why Washington Just Wrote a $2 Billion Check to Nine Companies

Beyond Moore’s Law: The Hyper-Acceleration of Autonomous AI Cyber Capabilities

The Exception Economy: When Security Teams Stop Protecting and Start Negotiating

GoPlus’s Latest Report Highlights How Blockchain Communities Are Leveraging Critical API Security Data To Mitigate Web3 Threats

C2A Security’s EVSec Risk Management and Automation Platform Gains Traction in Automotive Industry as Companies Seek to Efficiently Meet Regulatory Requirements

Zama Raises $73M in Series A Lead by Multicoin Capital and Protocol Labs to Commercialize Fully Homomorphic Encryption

RSM US Deploys Stellar Cyber Open XDR Platform to Secure Clients

ThreatHunter.ai Halts Hundreds of Attacks in the past 48 hours: Combating Ransomware and Nation-State Cyber Threats Head-On