all InfoSec news
ReversingLabs and Synopsys join forces to combat software supply chain threats
ReversingLabs Blog blog.reversinglabs.com
One of the lessons of software supply chain attacks like the recent hack of voice over IP (VoIP) provider 3CX is that development organizations need a broader set of tools to root out software supply chain attacks. Existing technologies like static- and dynamic application security testing (SAST and DAST) as well as software composition analysis (SCA) are necessary but insufficient to uncover sophisticated adversaries targeting development organizations and CI/CD pipelines.
3cx application application security application security testing attacks dast development dynamic events & announcements hack organizations reversinglabs root sast security security testing software software supply chain software supply chain attacks supply supply chain supply chain attacks synopsys technologies testing threats tools voice voip