all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

OWASP researcher: Supply chain attacks show organizations must shift beyond vulnerabilities

Add to bookmarks
Aug. 14, 2023, 4:35 p.m. | MalBot

Malware Analysis, News and Indicators - Latest topics malware.news


It's not news that software supply chain attacks have become a pervasive threat. They have increased greatly — while becoming more complicated, varied, and targeted.


Jeremy Long, a principal engineer at ServiceNow and founder and project lead of the OWASP Dependency Check Program, said that from an attacker’s perspective, targeting the software development supply chain "just makes sense” given the “incomprehensibly large” attack surface and evolving complexity. 


Long spoke at this year’s Black Hat conference in Las Vegas. In …

attacks beyond check dependency engineer founder jeremy organizations owasp perspective program project researcher servicenow software software supply chain software supply chain attacks supply supply chain supply chain attacks threat vulnerabilities

Visit resource

More from malware.news / Malware Analysis, News and Indicators - Latest topics

Czechia, Germany targeted by long-term APT28 cyberespionage campaign 57 minutes ago | malware.news
apt28 article attacks bear +26
New LockBit details to be divulged in reborn extortion site 57 minutes ago | malware.news
cybersecurity dismantled enforcement extortion +13
Finnish online banking accounts subjected to Android malware attacks 57 minutes ago | malware.news
accounts agency android android malware +15
Recorded Future at RSA: Platform Innovations to Drive the Future of Threat Intelligence an hour ago | malware.news
campaigns continue credential credential theft +21
Law enforcement dismantle cocaine lab in Spain with 100 kg monthly capacity an hour ago | malware.news
administration chemicals civil dea +16
Risk Prioritization is Not Enough, Mitigation Must Be Part of Your Strategy an hour ago | malware.news
article cloud cloud risk hybrid +13
Manage Security Risks Across Your AI’s Entire Lifecycle an hour ago | malware.news
applications building data deployment +15
Some Legal Ethics Quandaries on Use of AI, the Duty of Competence, and AI Practice … an hour ago | malware.news
artificial artificial intelligence blog ethical +10
IT Pro Tuesday #300 an hour ago | malware.news
back board breach csrb +20

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Consultant Sécurité SI H/F Gouvernance - Risques - Conformité - Nantes

@ Hifield | Saint-Herblain, France
View on infosec-jobs.com

L2 Security - Senior Security Engineer

@ Paytm | Noida, Uttar Pradesh
View on infosec-jobs.com

GRC Integrity Program Manager

@ Meta | Bellevue, WA | Menlo Park, CA | Washington, DC | New York City
View on infosec-jobs.com

Consultant Active Directory H/F

@ Hifield | Sèvres, France
View on infosec-jobs.com

Consultant PCI-DSS H/F

@ Hifield | Sèvres, France
View on infosec-jobs.com

Head of Security Operations

@ Canonical Ltd. | Home based - Americas, EMEA
View on infosec-jobs.com
View more jobs