DBOS announced that it has raised $8.5 million in seed funding, and released its first product offering. The funding was led by Engine Ventures and Construct Capital, along with Sinewave, and GutBrain Ventures. DBOS (database oriented operating system) runs operating system services on top of high-performance distributed databases, creating a scalable, fault-tolerant, and cyber-resilient foundation … continue reading
The White House Office of the National Cyber Director (ONCD) is calling on technology leaders to work together to reduce the software attack surface by adopting memory safe programming languages. Memory safety bugs are one of the most prevalent security issues over the last few decades, according to a report published by the office. These … continue reading
OpenText has unveiled the second generation of its advanced application security auditing tool, Fortify Audit Assistant. This announcement was made in anticipation of the inaugural OpenText Security Summit 2024 scheduled for February 6. The technology is designed to meet the challenges faced by today’s developers, who are navigating an increasingly complex threat landscape in multi-cloud … continue reading
The National Institute of Standards and Technology (NIST) published a new draft document that outlines strategies for integrating software supply chain security measures into CI/CD pipelines. Cloud-native applications typically use a microservices architecture with a centralized infrastructure like a service mesh. These applications are often developed using DevSecOps, which uses CI/CD pipelines to guide software … continue reading
Security and resilience solution provider Tidelift has announced that it has been awarded three contracts with the U.S. government, equalling over $3.5 million. With this, the company intends to expand its public sector organization to meet the growing demand for improved cybersecurity supply chain risk management from the U.S. government. According to Tidelift, this effort … continue reading
The National Cybersecurity Strategy released by the Biden Administration this week includes key recommendations that significantly mitigate software supply chain risks. Specifically, the White House recommends making software providers liable for insecure software. Until now, the U.S. government has never taken such a bold stance on liability for software products at this level. The strategy … continue reading
Social Boost, a Ukrainian tech company, and its 1991 Accelerator are launching the 1991 Hackathon: Media, a free event focused on identifying digital solutions to counter disinformation, analyze data for media, and develop cyber hygiene. The event will take place Jan. 20-22 at the Google Campus in Warsaw, Poland and online. The winning projects of … continue reading
IBM has announced a new partnership with 20 Historically Black Colleges and Universities (HBCUs) to address the cybersecurity skills gap by setting up Cybersecurity Leadership Centers. According to a recent study by IBM, organizations that don’t have sufficient security teams experience $550,000 more in costs related to data breaches compared to companies with sufficiently staffed … continue reading
CompTIA and ConnectWise launched a new training program to expand the nation’s cybersecurity and technology workforce through paid apprenticeships. The collaboration was announced following the recent Cyber Workforce and Education Summit at the White House where the Cybersecurity Apprenticeship Sprint challenged IT leaders to expand Registered Apprenticeships in cybersecurity. “We focus so much on top … continue reading
Anaconda announced that it would begin funding the Pyston project by hiring its lead developers Kevin Modzelewski and Marius Wachtler. Pyston’s core developers will focus on building an open-source community of users, contributors, and maintainers to ensure the Pyston project’s long-term sustainability, according to the company. The project is an open-source implementation of the Python … continue reading
SmartBear released new test management capabilities for regulated and critical industries in Zephyr Enterprise. The updates include specialized testing performance for complex environments, tighter integration with Atlassian Jira and an enhanced dashboard. Additionally, SmartBear will also now offer a white glove treatment option in which a senior-level technical account manager will advocate customers on various … continue reading
The SolarWinds and Colonial Pipeline hacks have brought security to the fore of software development. Once again. And again, our “thoughts and prayers” go out to the customers of those companies, and the companies themselves, harmed by the attacks. I say this because, not unlike the mass shootings that plague America — and please, do … continue reading
