all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Cyber-readiness and Changing Federal Government SBOM Requirements

Add to bookmarks
March 27, 2023, 10:05 p.m. | Cate Richards

Sonatype Blog blog.sonatype.com




Almost two years ago, President Biden’s Executive Order 14208, “Improving the Nation’s Cybersecurity,” was signed. This major step toward regulating the software supply chain in the US was spurred by the software supply chain attack on SolarWinds and since underlined by the critical Log4j vulnerability, Spring4shell vulnerability. In addition to countless others that haven’t received press coverage.

addition attack biden changing critical cyber cybersecurity executive executive order federal federal government government industry commentary log4j log4j vulnerability major nation news and views order president president biden press requirements sbom software software supply chain software supply chain attack solarwinds spring4shell spring4shell vulnerability supply supply chain supply chain attack vulnerability

Visit resource

More from blog.sonatype.com / Sonatype Blog

DevOps pioneers navigate organizational transformation 5 days, 20 hours ago | blog.sonatype.com
depth devops devops transformation download +13
Devs flood npm with 15,000 packages to reward themselves with Tea 'tokens' 1 week ago | blog.sonatype.com
cases dependency dependency confusion flood +19
The essential duo of SCA and SBOM management 1 week, 4 days ago | blog.sonatype.com
application application security attacks duo +16
Automating and maintaining SBOMs 2 weeks, 4 days ago | blog.sonatype.com
artifact automation bill components +11
CVE-2024-3094 The targeted backdoor supply chain attack against XZ and liblzma 3 weeks, 2 days ago | blog.sonatype.com
attack attacks backdoor bank +26
CVE-2024-3094 The targeted backdoor supply chain attack against XZ and libzma 3 weeks, 2 days ago | blog.sonatype.com
attack attacks backdoor bank +26
SBOM, VDR, and Maven: Transforming the Apache Logging experience to a common pattern 3 weeks, 5 days ago | blog.sonatype.com
apache cyclonedx devzone experience +14
Cyber readiness and SBOMs 4 weeks ago | blog.sonatype.com
academic academic research advanced bills +22
Open source ML/AI models: attackers' next target 1 month ago | blog.sonatype.com
ai models apps art attackers +14

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Team Lead, Security Operations Center, Cyber Risk

@ Kroll | United Kingdom
View on infosec-jobs.com

Cyber Security Risk Analyst

@ College Board | Remote - Virginia
View on infosec-jobs.com

Lead - IT Security Engineer

@ Bosch Group | BENGALURU, India
View on infosec-jobs.com

Project Cybersecurity Manager

@ Alstom | Bengaluru, KA, IN
View on infosec-jobs.com

Security Consultant

@ CloudSEK | Bengaluru, Karnataka, India
View on infosec-jobs.com
View more jobs