all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Feeling VEXed by software supply chain security? You’re not alone

Add to bookmarks
Feb. 28, 2023, 1:01 a.m. | Jessica Lyons Hardcastle

The Register - Security www.theregister.com

Chainguard CEO explains how to secure code given crims know to poison it at the source

SCSW  The vast majority of off-the-shelf software is composed of imported components, whether that's open source libraries or proprietary code. And that spells a security danger: if someone can subvert one of those components, they can infiltrate every installation of applications using those dependencies.…

applications ceo chainguard code dependencies installation open source secure code security software software supply chain software supply chain security supply supply chain supply chain security vast

Visit resource

More from www.theregister.com / The Register - Security

End-to-end encryption may be the bane of cops, but they can't close that Pandora's Box 13 hours ago | www.theregister.com
box can cops encryption +16
Dating apps kiss'n'tell all sorts of sensitive personal info 1 day, 8 hours ago | www.theregister.com
apps ask dating dating apps +11
Kaspersky accused of helping Russia develop military drone systems 2 days, 5 hours ago | www.theregister.com
design drone drones good +12
Kaspersky hits back at claims it helped Russia develop military drone systems 2 days, 5 hours ago | www.theregister.com
back claims design drone +15
It may take decade to shore up software supply chain security, says infosec CEO 2 days, 9 hours ago | www.theregister.com
ceo cybersecurity cybersecurity news endor labs +14
Europol op shutters 12 scam call centers and cuffs 21 suspected fraudsters 2 days, 21 hours ago | www.theregister.com
action arrested art call +15
Indonesia sneakily buys spyware, claims Amnesty International 2 days, 22 hours ago | www.theregister.com
amnesty amnesty international claims equipment +14
Chinese government website security is often worryingly bad, say Chinese researchers 3 days ago | www.theregister.com
attacks bad chinese chinese government +17
Microsoft, Google do a victory lap around passkeys 3 days, 3 hours ago | www.theregister.com
accounts apps commercial device +12

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Security Analyst

@ Northwestern Memorial Healthcare | Chicago, IL, United States
View on infosec-jobs.com

GRC Analyst

@ Richemont | Shelton, CT, US
View on infosec-jobs.com

Security Specialist

@ Peraton | Government Site, MD, United States
View on infosec-jobs.com

Information Assurance Security Specialist (IASS)

@ OBXtek Inc. | United States
View on infosec-jobs.com

Cyber Security Technology Analyst

@ Airbus | Bengaluru (Airbus)
View on infosec-jobs.com

Vice President, Cyber Operations Engineer

@ BlackRock | LO9-London - Drapers Gardens
View on infosec-jobs.com
View more jobs