Integris Software secures $10 Million Series A financing round

Integris Software announced it has raised a $10 million Series A financing round led by Aspect Ventures with participation from Workday Ventures, Madrona Venture Group, and Amplify Partners. The round brings Integris Software’s total funding to $13M. Integris will use the funding to continue to build on its data privacy automation platform and meet the demand for a data privacy solution. Recent developments in data privacy, such as the EU’s General Data Protection Regulation (GDPR) … More

SoftwareONE launches Security for Microsoft 365

SoftwareONE announced that it has launched Security for Microsoft 365, a managed service that enhances the security of Microsoft 365 environments as well as manages and protects users, devices, applications and information from advanced security threats. In a mobile-first, cloud-first world, the attack surface has expanded past the traditional IT perimeter and enterprises need to manage identities, protect devices, govern and manage Shadow IT, and make sure sensitive information is safeguarded. Security for Microsoft 365 … More

Shift to microservices and continuous software delivery puts pressure on DevOps observability

A Scalyr report, based on a survey of 155 software development practitioners, finds that organizations are shifting away from traditional, monolithic architectures, with three-quarters of survey respondents delivering at least some of their applications and more than one-third delivering most of their applications as microservices. Practitioners are also delivering software more rapidly than ever, with 71 percent of engineers pushing code into production at least weekly and nearly one-third doing so at least once per … More

How to improve software vulnerability disclosure in Europe

As software gets embedded in more and more things we use every day, the problem of software vulnerability reporting and patching rises in importance. Unfortunately, only a few European countries have put vulnerability disclosure processes in place. CEPS, a ​think tank and ​forum for debate on EU affairs, has delved in the problematics, listened to industry experts, academics, representatives of EU and international institutions and civil society, and has come up with recommendations on how … More

Radisys unveils 3GPP R15 compliant 5G software suite

Radisys Corporation announced the introduction of 5G Software Suite focusing on Next Generation NodeB (gNB), 5G User Equipment (UE) and 5G Core Network (CN). Radisys 3GPP Release 15 compliant gNB provides support for mmWave and sub6GHz frequencies. Pre-validated with Intel’s FlexRAN 5G reference architecture which is based on both Intel processors and Intel FPGAs, Radisys’ 5G Software Suite delivers support for Non-Standalone Mode (NSA), providing an easy migration path from LTE/LTE-Advanced deployments to 5G. The … More

CIOs are forced to compromise between faster innovation and perfectly working software

An independent global survey of 800 CIOs revealed that 73% of organizations say the need for speed in digital innovation is putting customer experience at risk. The study found that on average, organizations release new software updates three times per working hour, as they push to keep up with competitive pressures and soaring consumer expectation. Looking ahead, 89% of CIOs said they will need to release updates even faster in the future. However, the speed … More

Build security into software up front: Believe it or not, it’s cheaper and faster

“You can pay me now, or you can pay me later” was the tagline of a 1981 ad promoting oil filters. Seems simple, but the implied message was much stronger: It wasn’t about paying the same amount now or later. It was about paying a little now for an oil change or vastly more for an engine rebuild later—which made the choice pretty much a no-brainer. For anybody in the business of building software products, … More

It’s time to update your Cisco WebEx software again!

Cisco has released security updates for a variety of its offerings, including some that fix critical remote code execution vulnerabilities in WebEx software, Cisco Secure ACS (its policy-driven access control system), and a servlet included in two of its products. WebEx flaw (CVE-2018-0264) If you use Cisco’s WebEx videoconferencing software and you haven’t implemented the security update released last month, you should definitely get patching right now as your computer can be compromised by simply … More

Secure software development practices for developers, organizations and technology users

SAFECode announced today the publication of the Fundamental Practices for Secure Software Development: Essential Elements of a Secure Development Life Cycle Program (Third Edition). The authoritative best practices guide was written by SAFECode members to help software developers, development organizations and technology users initiate or improve their software assurance programs and encourage the industry-wide adoption of fundamental secure development practices. The best practices in the guide apply to cloud-based and online services, shrink-wrapped software and … More

Mac crypto miner distributed via MacUpdate, other software download sites

Software download site/aggregator MacUpdate has been spotted delivering a new Mac crypto miner to users. A new Mac cryptominer was being distributed from hacked MacUpdate pages yesterday, disguised as Firefox, OnyX and Deeper.https://t.co/W8jcotFixl#macOS #Malware #CryptoMining — Thomas Reed (@thomasareed) February 2, 2018 A rare threat Stealthy cryptocurrency miners are most often aimed at Windows and browser users (e.g., the Coinhive script), but no one is safe: neither Linux users, nor Mac users, even though cryptocurrency-mining … More