software Archives - Help Net Security

software

Kali Linux 2022.2 released: Desktop enhancements, tweaks for the terminal, new tools, and more!

May 17, 2022

Offensive Security has released Kali Linux 2022.2, the latest version of its popular penetration testing and digital forensics platform. Cosmetic changes Kali Linux 2022.2 …

Principles for Kubernetes security and good hygiene

April 26, 2022

Traditional methods of software security are not a good fit for Kubernetes: a renewed set of security implementations are required to make it less vulnerable. What’s …

The state of open-source software supply chain security in 2022

April 21, 2022

In this video for Help Net Security, Donald Fischer, CEO at Tidelift, talks about the state of open-source software supply chain security in 2022. Open source is the modern …

Challenges development teams face when building applications with open source

April 20, 2022

Tidelift released a report providing critical insights into the state and practice of open source software supply chain management. This comprehensive study of nearly 700 …

86% of developers don’t prioritize application security

April 7, 2022

Secure Code Warrior released findings from its survey, which found that developers’ actions and attitudes toward software security are in conflict. While many developers …

Security flaws found in 82% of public sector software applications

April 4, 2022

Veracode has released new findings that show the public sector has the highest proportion of security flaws in its applications and maintains some of the lowest and slowest …

Why banks should incorporate software bill of materials (SBOM) into their third-party risk programs

March 3, 2022

In the face of rising cybersecurity threats, the Biden administration issued an executive order in May 2021 calling for improvements in the supply chain. Among the recommended …

The Linux Foundation’s Census of OSS app libraries helps prioritize security work

March 3, 2022

The Linux Foundation announced the final release of “Census II of Free and Open Source Software – Application Libraries,” which identifies more than one thousand of the …

Attackers used Dridex to deliver Entropy ransomware, code resemblance uncovered

February 24, 2022

Sophos released a research that details code similarities in the general purpose Dridex botnet and the little-known ransomware, Entropy. The similarities are in the software …

Software supply chain security still a pain point

February 18, 2022

ActiveState announced the results of its survey, providing insights into the security challenges of the software industry’s open source supply chain, which includes the …

Tackling supply chain security head-on

February 17, 2022

Threats against supply chains are growing and the reality is that the size, cost, and sophistication of these threats make it difficult for anyone organization to control or …

Supply chain shortages create a cybersecurity nightmare

February 16, 2022

The White House has recently issued alerts noting that many manufacturers suffer from disrupted supply chains, and rebuilding supply chains is a major priority. Some analysts …

software

Kali Linux 2022.2 released: Desktop enhancements, tweaks for the terminal, new tools, and more!

Principles for Kubernetes security and good hygiene

The state of open-source software supply chain security in 2022

Challenges development teams face when building applications with open source

86% of developers don’t prioritize application security

Security flaws found in 82% of public sector software applications

Why banks should incorporate software bill of materials (SBOM) into their third-party risk programs

The Linux Foundation’s Census of OSS app libraries helps prioritize security work

Attackers used Dridex to deliver Entropy ransomware, code resemblance uncovered

Software supply chain security still a pain point

Tackling supply chain security head-on

Supply chain shortages create a cybersecurity nightmare

Don't miss

Kali Linux 2022.2 released: Desktop enhancements, tweaks for the terminal, new tools, and more!

Cardiologist charged for use and sale of ransomware

Mastering microsegmentation for enterprise applications

Why cyber security can’t just say “no“

The most insecure and easily hackable passwords