all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Software Bill of Materials (SBOM): The Gateway Drug to Supply Chain Security

Add to bookmarks
Dec. 27, 2023, 6:36 p.m. | /u/CirclesWeRun4

cybersecurity www.reddit.com

TL;DR: In today's world, SBOMs are littered with misinformation, almost always missing details, and are useless on their own.

I've found that most CramHacks subscribers are developers and security engineers. But very few are deeply involved in the supply chain security space, and I'm getting tired of telling everyone that producing an SBOM on its own does squat for security.

I'm not anti-SBOM, just anti-hype - and right now, SBOMs are all hype.

[https://www.cramhacks.com/p/sbom-gateway-drug-to-supply-chain](https://www.cramhacks.com/p/sbom-gateway-drug-to-supply-chain)

If you are interested in learning …

bill cybersecurity developers drug engineers found gateway materials misinformation missing own sbom sboms security software software bill of materials space subscribers supply supply chain supply chain security today useless world

Visit resource

More from www.reddit.com / cybersecurity

Need to vent. Mantrap to be used as auxiliary office… 7 hours ago | www.reddit.com
cybersecurity intern key leadership +7
Attackers Planted Millions of Imageless Repositories on Docker Hub 9 hours ago | www.reddit.com
attackers cybersecurity docker docker hub +3
Fortify SCA vs SonarQube for SAST 10 hours ago | www.reddit.com
assessment cybersecurity fortify opinion +4
Where can I find a list of vulnerabilities by software providers? 10 hours ago | www.reddit.com
alerts breaches can cve +22
AI Code Assistants and Cybersecurity Risk: 3 Recent Findings 10 hours ago | www.reddit.com
code cybersecurity cybersecurity risk findings +1
London Drugs stores remain closed after 'cybersecurity incident' 11 hours ago | www.reddit.com
cybersecurity cybersecurity incident drugs incident +2
Another major pharmacy chain shuts following possible cyberattack 14 hours ago | www.reddit.com
cyberattack cybersecurity major pharmacy
Cyber security career progression hive-mind 22 hours ago | www.reddit.com
america career career progression coming +6
Tryhack me and HTB 23 hours ago | www.reddit.com
advice cybersec cybersecurity experience +8

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Azure DevSecOps Cloud Engineer II

@ Prudent Technology | McLean, VA, USA
View on infosec-jobs.com

Security Engineer III - Python, AWS

@ JPMorgan Chase & Co. | Bengaluru, Karnataka, India
View on infosec-jobs.com

SOC Analyst (Threat Hunter)

@ NCS | Singapore, Singapore
View on infosec-jobs.com

Managed Services Information Security Manager

@ NTT DATA | Sydney, Australia
View on infosec-jobs.com

Senior Security Engineer (Remote)

@ Mattermost | United Kingdom
View on infosec-jobs.com

Penetration Tester (Part Time & Remote)

@ TestPros | United States - Remote
View on infosec-jobs.com
View more jobs