Search Results for "supply chain"

Log4J Image

Episode 248: GitHub’s Jill Moné-Corallo on Product Security And Supply Chain Threats

In this episode of the Security Ledger Podcast, Paul speaks with Jill Moné-Corallo, the Director of Product Security Engineering Response at GitHub. Jill talks about her journey from a college stint working at Apple’s Genius bar, to the information security space – first at product security at Apple and now at GitHub, a massive development platform that is increasingly in the crosshairs of sophisticated cyber criminals and nation-state actors.

Continue Reading
supply chain concept

Report: Digital Supply Chain Breaches Impact 98% of Organizations

Results from a survey of 2,000 enterprises found an increasing supply chain risk, with 98% of respondents reported having been “negatively impacted” by a breach in their supply chain

Continue Reading
LofyGang Art

Supply Chain Hackers LofyGang Behind Hundreds of Malicious Packages

Researchers at Checkmarx say that a cybercriminal group, LofyGang, has targeted the open-source supply chain with hundreds of malicious packages to steal credit card information, stream accounts, and promote hacking tools.

Continue Reading
Source Code Secret

Spotlight: How Secrets Sprawl Undermines Software Supply Chain Security

Mackenzie Jackson, the Developer Advocate at GitGuardian joins Paul to discuss how “secrets sprawl” on sites like GitHub threatens software supply chains.

Continue Reading
Digital Signature Concept

Episode 216: Signed, Sealed and Delivered: The Future of Supply Chain Security

In this episode of the podcast
(#216) we talk with Brian Trzupek, Digicert’s Vice President of Product, about the growing urgency of securing software supply chains, and how digital code signing can help prevent compromises like the recent hack of the firm SolarWinds.

Continue Reading
1 2 3 39