Leonardo DRZ wins first ever TCG CodeGen Developer Challenge
President and Chairman of Trusted Computing Group (TCG), Dr. Joerg Borchert, shares the news regarding TCG's first ever CodeGen Developer Challenge. The post Leonardo DRZ wins first ever TCG CodeGen Developer Challenge...
Spotlight: How Secrets Sprawl Undermines Software Supply Chain Security
Mackenzie Jackson, the Developer Advocate at GitGuardian joins Paul to discuss how “secrets sprawl” on sites like GitHub threatens software supply chains. The post Spotlight: How Secrets Sprawl Undermines Software Supply Chain...
Spotlight: Automation Beckons as DevOps, IoT Drive PKI Explosion
Brian Trzupek of DigiCert joins Paul to talk about the findings of a recent State of PKI Automation survey and the challenges of managing fast-growing population of tens of thousands of...
Episode 216: Signed, Sealed and Delivered: The Future of Supply Chain Security
In this episode of the podcast (#216) we talk with Brian Trzupek, Digicert’s Vice President of Product, about the growing urgency of securing software supply chains, and how digital code signing can...
What SolarWinds Tells Us About Securing the Software Development Supply Chain
The recent SolarWinds attack highlights an Achilles heel for enterprises: software updates for critical enterprise applications. Digital signing of code is one solution, but organizations need to modernize their code signing...
Want To Prevent Another SolarWinds? Start With Developers
An all-star roundtable of security experts tackles the question of how to prevent another SolarWinds. The post Want To Prevent Another SolarWinds? Start With Developers appeared first on The Security Ledger...
Critical Flaw Found In Widely Used Netmask Open Source Module
An IP address parsing flaw in the netmask NPM module affects hundreds of thousands of applications that rely on it. But that may be just the tip of the iceberg, researchers...
Researchers Test UN’s Cybersecurity, Find Data on 100k
Independent security researchers testing the security of the United Nations were able to compromise public-facing servers and a cloud-based development account for the U.N. and lift data on more than 100,000...
Episode 191: Shifting Compliance Left with Galen Emery of Chef
Galen Emery of Chef comes into the Security Ledger studios to talk about how security and compliance are "shifting left" with DEVSECOPS. The post Episode 191: Shifting Compliance Left with Galen...
Podcast Episode 189: AppSec for Pandemic Times, A Conversation with GitLab Security VP Jonathan Hunt
Podcast: Play in new window | Download (Duration: 27:30 — 37.8MB) | Embed Subscribe: Android | Email | Google Podcasts | The pandemic isn’t the only thing shaking up development organizations. Application security is a top concern and security work is “shifting left” and becoming more intertwined with development. In this podcast, Security Ledger Editor […]