Security

Can you trust commercial software? Tackling third-party software risk

Supply chain security is rapidly emerging as a material risk for enterprise software buyers. Yet, despite best efforts from regulators to hold software publishers accountable, enterprise buyers ...
StateTech Magazine

A Guide to Software Bills of Materials for State and Local Governments

Government agencies use SBOMs to expose hidden risks, govern artificial intelligence tools and speed response to software ...
SecurityWeek

From Open Source to OpenAI: The Evolution of Third-Party Risk

Software supply chain attacks are evolving as open source and AI-generated code introduce new third-party risks. Learn how visibility and shift-left security reduce exposure.
dbta

BlueVoyant Creates New SBOM Capabilities to Reduce Third-Party Risks from Commercial Software

BlueVoyant, a leader in integrated cybersecurity, is launching its Software Bill of Materials (SBOM) management offering, helping organizations reduce risk related to software by automating the ...
CSOonline

Software supply chain threats continue to plague CISOs

The latest software library compromise of an obscure but popular file compression algorithm called XZ Utils shows how critical these third-party components can be in keeping enterprises safe and ...
CSOonline

PwC UK partners with ReversingLabs to bring software supply chain security to third-party risk management

Modern software supply chain security demands that organizations not only address issues specific to the development of software applications, but also to the consumption of commercial software, where ...
Dark Reading

Rising Tide of Software Supply Chain Attacks: An Urgent Problem

In recent years, software supply chain attacks have moved from the periphery of concerns to the forefront. According to Verizon's "2024 Data Breach Investigations Report," the use of vulnerabilities ...
Computer Weekly

Secure software: Third-party suppliers your first-party risk

In 1965, Ralph Nader’s groundbreaking book Unsafe at Any Speed exposed how car manufacturers prioritised style, performance, and profit over the safety of drivers and passengers. His narrative spurred ...
Forbes

A House Of Cards: Third-Party Risks Are Undermining Businesses Resilience Strategies

Resilience strategies are failing. Despite their known importance, why is it so difficult to implement them effectively? Resilience is not a new concept, but it is one we talk about individually and ...
Embedded

10 Questions to ask before buying a software composition analysis tool

Most modern software applications are built using third-party and open-source components that are stitched together with original code to achieve the desired capabilities. Third party software, which ...
EdTech

What Is Third-Party Risk, and What Can Higher Education Do About It?

Cyberattacks on vendor partners can leave sensitive college and university data exposed, but experts say good cyber hygiene and data governance can limit the damage. Last month, Progress Software ...