Search results Search for: Search Refine your results by duration: Any Under 5 mins Under 20 mins Over 20 mins Sort by: Relevance Views Date AI Package Hallucination - A New Supply Chain Attack Technique to Watch Bar Lanyado, Vulcan Cyber security researcher | Mike Parkin, Vulcan Cyber engineer The Vulcan Cyber Voyager18 team recently discovered a new attack technique that enables threat actors to spread malicious code packages using generati... June 22, 2023 3:00pm 5 Steps to Integrate SAST into the DevSecOps Pipeline Meera Rao, Senior Principal Consultant Even software with a solid architecture and design can harbor vulnerabilities, whether due to mistakes or shortcuts. But limited security staff don’t ... 3 days ago | 61 mins Top Challenges With Shifting Security to Development Melinda Marks, Enterprise Strategy Research Group (ESG) & Tim Mackey, Synopsys With modern processes, software developers can quickly build and release applications by deploying them to the cloud. But security teams are strugglin... June 29, 2023 9:00am The 2023 Guide to Open Source Mike McGuire, Senior Software Solutions Manager, Synopsys and Phil Odence, GM Black Duck Audit, Synopsys Open source software continues to prove its staying power. It serves as the foundation for the modern applications that we depend on to run. Along w... 1 month ago | 54 mins Why Threat Modeling Is Critical for Enterprise Cyber Defense Jake Williams, Security Researcher & Christopher Cummings, Principal Consultant. Moderated by Becky Bracken from Dark Reading As enterprises deal with multiple threats coming in different forms, security teams are shifting to a risk-based security to handle these challenges. ... June 15, 2023 9:00am Comprehensive Software Due Diligence with Black Duck Audits Phil Odence, Synopsys To get a holistic view of the software risk inherent in an acquisition, it’s critical to assess the software development organization and processes an... 1 month ago | 59 mins Software Risk is Business Risk Per-Olof Persson, Principal Solution Advisor, Synopsys Software risk is not only a technology problem. It is a business problem. Once you deploy and use software, you own the risk that comes with it. No m... 4 months ago | 34 mins How to Establish Automotive Fuzz Testing? John McShane, Senior Product Manager | Nico Vinzenz, Cybersecurity Expert | Daniel Teuchert, Application Security Engineer Fuzz testing is effective in uncovering vulnerabilities and robustness issues in automotive products. The results are improved development times and l... 3 months ago | 51 mins An Insider’s Guide to SPDX Gary O’Neall, Co-Lead, SPDX Tech Team | Founder, Source Auditor SPDX (Software Packet Data Exchange) is a widely used software bill of materials (SBOM) specification. It’s one of two full-stack SBOM standards appro... June 13, 2023 6:00pm Secure your customers' open source ecosystems with Ubuntu Pro - Europe Rick Fredrickson, Global Head of Channels & Lorenzo Cavassa, Principal Field Engineer Open-source software adoption is on the rise, but securing open source long-term is a challenge for most organizations who use it. According to Syn... June 15, 2023 12:30pm Load more