all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

What’s behind SBOM skepticism? One word: Fear

Add to bookmarks
May 10, 2023, 9:55 p.m. | MalBot

Malware Analysis, News and Indicators - Latest topics malware.news


If there’s a poster child for the increased focus and attention on the security of software supply chains, it is the SBOM, or Software Bill of Materials. SBOMs are a critical component for operationalizing software supply chain security. Practically, SBOMs act like a list of ingredients for the software that makes up applications: calling out otherwise invisible dependencies on proprietary, open source and licensed, commercial libraries. 


So what is there to complain about? A lot, as it turns out. …

act applications attention bill child critical focus list sbom sboms security software software bill of materials software supply chain software supply chains software supply chain security supply supply chain supply chains supply chain security word

Visit resource

More from malware.news / Malware Analysis, News and Indicators - Latest topics

How to Determine Causal Effects when A/B Tests are Infeasible through Adopter Analysis an hour ago | malware.news
analysis article blog global +6
In memoriam: Steven Young, respected CISO and former Cybersecurity Collaborative VP 2 hours ago | malware.news
article blue blue shield california +10
Malware Mondays Episode 02 - Investigating Processes with Process Explorer and System Informer 2 hours ago | malware.news
malware analysis topic
Cloud Protection: Move Beyond Hygiene & Protect Cloud Assets 2 hours ago | malware.news
and response article assets beyond +26
Sintesi riepilogativa delle campagne malevole nella settimana del 13 – 19 Aprile 2024 2 hours ago | malware.news
cert con cui dei +2
A Brief History of Cybercrime 3 hours ago | malware.news
ads as-a-service big business +23
Ivanti security advisory (AV24-215) 3 hours ago | malware.news
advisory article canadian canadian centre for cyber security +8
Microsoft Edge security advisory (AV24-214) 3 hours ago | malware.news
advisory article canadian canadian centre for cyber security +10
Protecting yourself after a medical data breach – Week in security with Tony Anscombe 4 hours ago | malware.news
breach consequences data data breach +12

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Information Security Engineers

@ D. E. Shaw Research | New York City
View on infosec-jobs.com

Cybersecurity Triage Analyst

@ Peraton | Linthicum, MD, United States
View on infosec-jobs.com

Associate DevSecOps Engineer

@ LinQuest | Los Angeles, California, United States
View on infosec-jobs.com

DORA Compliance Program Manager

@ Resillion | Brussels, Belgium
View on infosec-jobs.com

Head of Workplace Risk and Compliance

@ Wise | London, United Kingdom
View on infosec-jobs.com
View more jobs