What does it take to make secure software? The Open Source Security Foundation (OpenSSF) has a few ideas (10 of them, in fact). This week at the OpenSSF Day Japan event in Tokyo, the nonprofit group ...

Value stream management involves people in the organization to examine workflows and other processes to ensure they are deriving the maximum value from their efforts while eliminating waste — of ...

Microsoft on Wednesday offered a progress report on its "Secure Future Initiative" (SFI). The announcement by Bret Arsenault, Microsoft's corporate vice president and chief cybersecurity advisor, ...

Professional and state-sponsored hacking groups are dedicating more time, money, and effort to cybercrime every year. Threat actors use novel techniques in new types of attacks that some of the ...

For all the scary talk about cyberattacks from vendors and industry experts, relatively few attacks are actually devastating. But the Jaguar Land Rover (JLR) attack was. The JLR breach wasn’t some ...

Software supply chain management firm Sonatype Inc. today announced the launch of Sonatype Guide, a new developer tool that makes artificial intelligence-assisted software development faster, safer ...

SUNNYVALE, Ca.--(BUSINESS WIRE)--In response to rising software supply chain attacks, BlueFlag Security is delivering enhanced capabilities within its platform for software development life cycle ...

Security is a key consideration when it comes to platform engineering, which is the next step in the evolution of DevOps. Platform engineering is a discipline for designing, building and maintaining ...

Software security may finally be getting the attention it deserves as more countries institute necessary guidelines. But with threats increasing against the software supply chains, it is too soon to ...

Application security posture management company Apiiro Ltd. today announced the launch of Guardian Agent, a new artificial intelligence application security agent that guards AI models and prevents ...