The Linux Foundation is addressing structural and security complexities in today’s modern software supply chains with the release of the ‘Vulnerabilities in the Core,’ a preliminary report and census II of open-source software. The report was put together by the Linux Foundation’s Core Infrastructure Initiative and the Laboratory for Innovation Science at Harvard (LISH). RELATED … continue reading
Facebook’s proposal to the EU to tone down what the company called “intrusive regulations,” was rejected. European commissioner for the internal market Thierry Breton said that it was up to Facebook to adopt Europe’s standards, and not the other way around. The proposal came in the form of a whitepaper, which argued to ensure accountability … continue reading
Synopsys announced that it will release a major update to the Polaris Software Integrity Platform to extend its static application security testing (SAST) and software composition analysis (SCA) capabilities through the native integration of the Code Sight plugin. The new update will allow developers to find and fix security weaknesses in both proprietary code and … continue reading
In 2011, Marc Andreessen wrote an article in the Wall Street Journal that included the now-famous phrase “software is eating the world.” Eight years on, that statement rings truer than ever. It’s not a stretch to say that software is eating the cybersecurity world as well. The fallout from not integrating security early in the … continue reading
The security of edge devices presents both a major challenge and an opportunity for building more modern edge security practices. Edge devices exist outside of the protections that IT data centers provide, according to Patrick Sullivan, the global director of security at Akamai. One of the most prominent concerns is the physical security of the … continue reading
Parasoft, the global automated software testing authority since 1987, announced today their partnership with HackEDU, an interactive cybersecurity training company. This new partnership will allow organizations to train their developers and testers on the latest threats and mitigations for modern secure software development. Parasoft offers the best in class Static Analysis Security Testing (SAST) solutions, and … continue reading
Neo4j Graph Database 4.0 has been released with a new reactive architecture to provide a “very responsive, elastic and robust” database, the company explained. In addition, the latest release features new multi-database capabilities, Neo4j Fabric, and a schema-based security model. According to Neo4j, the 4.0 release of the graph database addresses the broad and complex … continue reading
The Apache Software Foundation (ASF) is reviewing the state of security across its 300+ projects in a recently released report. According to the report, the most notable events in 2019 included increased attacks of Hadoop instances, a flaw in Apache HTTP Server 2.4, and a flaw in older versions of Apache Axis. The foundation looked … continue reading
Apache Guacamole 1.1 has been announced. Apache Guacamole is a clientless remote desktop gateway. The latest release includes two subprojects, the HTML5 web application which serves the Guacamole client to users, and “guacamole-server”, the remote desktop proxy which the web application communicates with. The 1.1.0 release also features support for dynamic image quality and for … continue reading
More than half of companies that use cloud services have suffered from a data breach, according to a new report. The report finds that the data breaches are a result of widely dispersed in the cloud that are beyond enterprise control. The Enterprise Supernova: The Data Dispersion Cloud Adoption and Risk Report was conducted by … continue reading
Nutanix Mine is now generally available, allowing users to experience data management capabilities on Nutanix’s enterprise cloud platform. “Backed up data, kept in isolated and aging infrastructure is hard to access, difficult to manage, often stored on antiquated devices, and almost impossible to reuse,” Nutanix Mine wrote in a post. “This keen focus on data … continue reading
Mozilla released a guide for college students that want to enter the tech industry called “With Great Tech Comes Great Responsibility.” The guide has background on the history of tech organizing and advice from academics and current and former tech workers on how to grapple with challenging choices. Download the guide here. Azure Databricks achieves … continue reading
