The Security Ledger with Paul F. Roberts

March 12, 2025 | Paul Roberts

Report: Epidemic of Flaws in Commercial and Open Source Code

ReversingLabs' 2025 Software Supply Chain Security Report finds that security flaws in commercial and open source code are epidemic as hackers target supply chains including those for cryptocurrency and AI in a play for access to sensitive data and IT assets.

Listen & Read Article

Recent Podcast Episodes

Episode 260: The Art of Teaching Secure Coding with Tanya Janca

36:32

Security Validation: A Deep Dive with Cymulate's David Kellerman

Pacific Rim: Sophos’ 6 Year Battle To Beat Back China State Hackers

33:42

Report Finds Lack of Talent, Tools Frustrates Cyber Investigations

Episode 258: Broken Brokers - Optery's Fight To Claw Back Your Personal Data

36:16

Podcast Series

Spotlight

118 Episodes

Spotlight podcasts bring Security Ledger's audience up close and personal with some of the leading cybersecurity firms in the world: exploring the history, technology and vision that drives innovation in the information security field. Hosted by Security Ledger Editor in Chief Paul Roberts, this premium podcast features interviews with leading executives, security researchers and entrepreneurs as they chart the future of the cybersecurity industry.

Series Details

The Fight to Repair

8 Episodes

How do we keep the Internet of Things from maturing into the Internet of Broken, Vulnerable and Unsupported Things? A right to repair is key. In this series of interviews we explore the issues complicating repair on connected devices and how an important consumer and property right is threatened by the headlong growth of the IOT.

Series Details

CISO Close Up

19 Episodes

Cloud. Internet of Things. DEVOPS. The job of Chief Information Security Officer has never been more challenging. How are world's leading CISOs taking on the challenges that a fast-evolving technology and risk landscape throw at them? In CISO Close Up, Security Ledger Editor in Chief Paul Roberts talks shop with some of the best CISOs in the private and public sectors to get their thoughts on the job.

Series Details

Recent Posts

Hacking Connected Vehicles with Chris Valasek of IOActive

July 25, 2015 Paul Roberts

Chris Valasek, the Director of Vehicle Research at IOActive speaks with Security Ledger Editor in Chief Paul Roberts about his recent research on vulnerabilities in late model vehicles by Chrysler. Valasek and his partner Charlie Miller recently demonstrated a way to take control of a Jeep Cherokee wirelessly using software based attacks.

Fiat Chrysler Recalls 1.4m Vehicles to Patch Wireless Vulnerability

July 24, 2015 Paul Roberts

In-brief: Fiat Chrysler is recalling 1.4 million vehicles to fix a software flaw that leaves the cars vulnerable to wireless hacks that could affect braking, steering and acceleration.

Updated: Nothing But Scary: Wireless Hacks Disable Car on Interstate

July 21, 2015 Paul Roberts

In-brief: Researchers Chris Valasek and Charlie Miller are demonstrating wireless attacks on connected vehicles that can alter critical functions like braking and acceleration. (Added comments from Chris Valasek July 21, 2015 12:15 ET)

Parent Firm of Ashley Madison Faces Extinction Level Hack

July 20, 2015 Paul Roberts

In-brief: Following a security breach, Avid Life Media, the parent of Ashley Madison and other adult-focused hookup sites, said that it was on the trail of the culprits. The question is whether ALM and its various properties will survive the incident.

Security Firms See Dollars In Taming IoT Insecurity

July 17, 2015 Paul Roberts

In-brief: Security firms Trustwave and IOActive both announced services promising to help aspiring IoT product firms secure their products, more evidence that the Internet of Things is producing secondary markets.