Topic: cybersecurity

OpenText updates security auditing tool to help developers navigate increasingly complex threat landscape

OpenText has unveiled the second generation of its advanced application security auditing tool, Fortify Audit Assistant. This announcement was made in anticipation of the inaugural OpenText Security Summit 2024 scheduled for February 6.  The technology is designed to meet the challenges faced by today’s developers, who are navigating an increasingly complex threat landscape in multi-cloud … continue reading

NIST publishes new draft framework for integrating supply chain security into CI/CD pipelines

The National Institute of Standards and Technology (NIST) published a new draft document that outlines strategies for integrating software supply chain security measures into CI/CD pipelines.  Cloud-native applications typically use a microservices architecture with a centralized infrastructure like a service mesh. These applications are often developed using DevSecOps, which uses CI/CD pipelines to guide software … continue reading

Tidelift has been awarded a $3.5 million contract to secure software supply chains

Security and resilience solution provider Tidelift has announced that it has been awarded three contracts with the U.S. government, equalling over $3.5 million. With this, the company intends to expand its public sector organization to meet the growing demand for improved cybersecurity supply chain risk management from the U.S. government.  According to Tidelift, this effort … continue reading

What the National Cybersecurity Strategy means for software providers

The National Cybersecurity Strategy released by the Biden Administration this week includes key recommendations that significantly mitigate software supply chain risks. Specifically, the White House recommends making software providers liable for insecure software. Until now, the U.S. government has never taken such a bold stance on liability for software products at this level. The strategy … continue reading

Ukrainian hackathon to fight disinformation

Social Boost, a Ukrainian tech company, and its 1991 Accelerator are launching the 1991 Hackathon: Media, a free event focused on identifying digital solutions to counter disinformation, analyze data for media, and develop cyber hygiene. The event will take place Jan. 20-22 at the Google Campus in Warsaw, Poland and online.  The winning projects of … continue reading

IBM to establish Cybersecurity Leadership Centers at 20 HBCUs to address skills gap

IBM has announced a new partnership with 20 Historically Black Colleges and Universities (HBCUs) to address the cybersecurity skills gap by setting up Cybersecurity Leadership Centers.  According to a recent study by IBM, organizations that don’t have sufficient security teams experience $550,000 more in costs related to data breaches compared to companies with sufficiently staffed … continue reading

CompTIA and ConnectWise partner on expanding security workforce through paid apprenticeships

CompTIA and ConnectWise launched a new training program to expand the nation’s cybersecurity and technology workforce through paid apprenticeships. The collaboration was announced following the recent Cyber Workforce and Education Summit at the White House where the Cybersecurity Apprenticeship Sprint challenged IT leaders to expand Registered Apprenticeships in cybersecurity.  “We focus so much on top … continue reading

SD Times news digest: Anaconda begins funding Pyston project, Google commits $10 billion to advance cybersecurity, Apache weekly update

Anaconda announced that it would begin funding the Pyston project by hiring its lead developers Kevin Modzelewski and Marius Wachtler.   Pyston’s core developers will focus on building an open-source community of users, contributors, and maintainers to ensure the Pyston project’s long-term sustainability, according to the company.  The project is an open-source implementation of the Python … continue reading

SmartBear Zephyr Enterprise

SD Times news digest: SmartBear releases new test management capabilities in Zephyr Enterprise, Dataiku’s online analytics tool, Immersive Labs raises $75 million

SmartBear released new test management capabilities for regulated and critical industries in Zephyr Enterprise. The updates include specialized testing performance for complex environments, tighter integration with Atlassian Jira and an enhanced dashboard. Additionally, SmartBear will also now offer a white glove treatment option in which a senior-level technical account manager will advocate customers on various … continue reading

Industry Watch: Security first and foremost

The SolarWinds and Colonial Pipeline hacks have brought security to the fore of software development. Once again. And again, our “thoughts and prayers” go out to the customers of those companies, and the companies themselves, harmed by the attacks. I say this because, not unlike the mass shootings that plague America — and please, do … continue reading

President Biden signs cybersecurity executive order

President Biden yesterday released an executive order designed to improve the government’s efforts to prevent and act against a growing number of malicious cyber campaigns against both the public and private sector. The order is a result of an increasing number of cyber attacks in the United States. For instance, a recent ransomware attack forced … continue reading

SD Times news digest: Microsoft previews GUI app support, Godot 3.3 released, and Thoma Bravo acquires cybersecurity company Proofpoint

The initial preview of Microsoft’s GUI app support is now available for Windows Subsystem for Linux which lets developers use their favorite Linux GUI applications. According to the company, this will be useful for running Linux-only applications or Linux-specific use cases such as testing. It can also be used for building, testing and using Linux … continue reading

1 2 3 17
DMCA.com Protection Status