Articles Tagged with ''software security''

Anti-cheating software shuts down amid cyber attack

Verificient Technologies' anti-cheating software suffers data breach

October 19, 2020

The company announced news of the breach and decided to shut down the software for maintenance and server upgrades.

Tinker Tailor Business Spy: What entrepreneurs don’t know (that can hurt them)

Craig Singleton

September 28, 2020

As September is National Insider Threat Awareness Month, there is no better time than the present to seriously reconsider how we educate America’s next generation of business leaders about these critical intelligence issues. As we wait on MBA programs to catch up to America’s new geopolitical reality, these are the three most important issues business schools, early stage entrepreneurs, and even seasoned pros should consider as they protect their life’s work.

BSIMM11 study shows fundamental shifts in software security initiatives in response to DevOps & digital transformation

The 11th iteration of the Building Security In Maturity Model reflects how organizations are adapting their software security efforts to support modern software development paradigms

September 17, 2020

Synopsys, Inc. published BSIMM11, the latest version of the Building Security In Maturity Model (BSIMM), created to help organizations plan, execute, measure, and improve their software security initiatives (SSIs). BSIMM11 reflects the software security practices observed across 130 firms from multiple industry verticals including financial services, FinTech, independent software vendors, cloud, health care, Internet of Things, insurance, and retail.

Databases stores, cloud storage and services at risk from exposed access keys

Poor security measures associated with software development puts organizations at risk

September 15, 2020

Digital Shadows revealed new research looking at the growing problem of company access keys inadvertently exposed during software development. Access keys, and their corresponding secrets, are used by developers to authenticate into other systems.

vulnerability in third-party software could open organizations to cyberattacks

Third-party components putting operational hardware and software technologies at risk

September 9, 2020

Claroty researchers have uncovered six critical vulnerabilities in third-party license management components, which could expose operational technology (OT) environments (hardware and software components) across numerous industries to exploits via cyberattacks.

Survey reveals nearly 50% of organizations knowingly push vulnerable software

August 13, 2020

New research finds nearly half of organizations regularly and knowingly ship vulnerable code despite using application security tools. Among the top reasons cited for pushing vulnerable code were pressure to meet release deadlines (54 percent) and finding vulnerabilities too late in the software development lifecycle (45 percent), according to the Veracode and Enterprise Strategy Group (ESG) research.

Google admits its Home speakers recorded at all times

August 11, 2020

Google has admitted that its Home speakers recorded users at all times, even when they hadn't said "wake words" such as "OK Google," due to a security error earlier this year.

Resilient Surveillance in Rugged Environments

When it comes to using video in rugged terrain and remote locations, enterprise security professionals face a range of challenges.

Adam Stone

March 20, 2020

But is the tech ready for mainstream security use?

The Necessary Evolution of SecOps to DevSecOps

Ariel Assaraf

March 10, 2020

By 2021, cybercrime will cost about 6 trillion dollars a year. With an ever-increasing amount of ways to connect to your network, IT security teams must be able to secure and mitigate this risk by prioritizing security concerns at earlier stages of the software development life cycle.

Vertical Maturity and DevOps Culture With BSIMM10

Sammy Migues

January 15, 2020

If you’re in business today, no matter what your “core” product or service is, you are almost certainly a software company. It is nearly impossible to run a business without it. That means you should know about the Building Security In Maturity Model—better, and more conveniently, known as the BSIMM.

Domestic violence remains a complex driver of workplace violence, creating high-risk scenarios that require coordination across departments without clear ownership. Learn how threat management teams can manage domestic violence referrals from the start.

OSHA fines grab headlines, but most compliance issues start with everyday operational gaps: missed protocols, unsecured areas, or slow response. Learn how emerging technologies & AI can be leveraged towards a more proactive model of compliance.