What does it take to make secure software? The Open Source Security Foundation (OpenSSF) has a few ideas (10 of them, in fact). This week at the OpenSSF Day Japan event in Tokyo, the nonprofit group ...

For all the scary talk about cyberattacks from vendors and industry experts, relatively few attacks are actually devastating. But the Jaguar Land Rover (JLR) attack was. The JLR breach wasn’t some ...

This whitepaper covers how to expedite authority to operate and secure development at scale in the U.S. Government by connecting secure software development and ATO. U.S. government agencies are ...

Source code is no longer the attack surface. The binary is. And most security teams aren’t even looking at it.

As 2020 finally came to an end and 2021 began, The New York Times reported that Russia used SolarWinds' hacked program to infiltrate at least 18,000 government and private networks. As a result, it is ...

Application security posture management company Apiiro Ltd. today announced the launch of Guardian Agent, a new artificial intelligence application security agent that guards AI models and prevents ...

Value stream management involves people in the organization to examine workflows and other processes to ensure they are deriving the maximum value from their efforts while eliminating waste — of ...

Linux Foundation Research and the Open Source Security Foundation (OpenSSF) are pleased to release a new report titled “Secure Software Development Education 2024 Survey: Understanding Current Needs.” ...

GitLab Duo Enterprise, a new end-to-end AI add-on, combines the developer-focused AI capabilities of GitLab Duo Pro—organizational privacy controls, code suggestions, and chat—with enterprise-focused ...

Makers of software used by the federal government will now be required to affirm that their products are manufactured with secure development practices in mind, filling out a form released Monday by ...

Last week’s Docker announcement that it would make more than 1,000 of its Docker Hardened Images free and open-source software, combined with Anaconda’s AI Catalyst and other development technologies, ...