The Security Ledger with Paul F. Roberts

March 12, 2025 | Paul Roberts

Report: Epidemic of Flaws in Commercial and Open Source Code

ReversingLabs' 2025 Software Supply Chain Security Report finds that security flaws in commercial and open source code are epidemic as hackers target supply chains including those for cryptocurrency and AI in a play for access to sensitive data and IT assets.

Listen & Read Article

Recent Podcast Episodes

Episode 260: The Art of Teaching Secure Coding with Tanya Janca

36:32

Security Validation: A Deep Dive with Cymulate's David Kellerman

Pacific Rim: Sophos’ 6 Year Battle To Beat Back China State Hackers

33:42

Report Finds Lack of Talent, Tools Frustrates Cyber Investigations

Episode 258: Broken Brokers - Optery's Fight To Claw Back Your Personal Data

36:16

Podcast Series

Spotlight

118 Episodes

Spotlight podcasts bring Security Ledger's audience up close and personal with some of the leading cybersecurity firms in the world: exploring the history, technology and vision that drives innovation in the information security field. Hosted by Security Ledger Editor in Chief Paul Roberts, this premium podcast features interviews with leading executives, security researchers and entrepreneurs as they chart the future of the cybersecurity industry.

Series Details

The Fight to Repair

8 Episodes

How do we keep the Internet of Things from maturing into the Internet of Broken, Vulnerable and Unsupported Things? A right to repair is key. In this series of interviews we explore the issues complicating repair on connected devices and how an important consumer and property right is threatened by the headlong growth of the IOT.

Series Details

CISO Close Up

19 Episodes

Cloud. Internet of Things. DEVOPS. The job of Chief Information Security Officer has never been more challenging. How are world's leading CISOs taking on the challenges that a fast-evolving technology and risk landscape throw at them? In CISO Close Up, Security Ledger Editor in Chief Paul Roberts talks shop with some of the best CISOs in the private and public sectors to get their thoughts on the job.

Series Details

Recent Posts

Episode 210: Moving The Goal Posts On Vendor Transparency: A Conversation With Intel’s Suzy Greenberg

April 8, 2021 Paul Roberts

In this episode of the podcast, Paul speaks with Intel Vice President Suzy Greenberg about a new survey by the Poneman Institute that shows how customers’ expectations are changing when it comes to vendor transparency about software vulnerabilities.

Episode 209: Fortinet’s Renee Tarun on Scaling InfoSec To Meet Tomorrow’s Challenges

April 2, 2021 Paul Roberts

The information security industry needs both better tools to fight adversaries, and more people to do the fighting, says Fortinet Deputy CISO Renee Tarun in this interview with The Security Ledger Podcast’s Paul Roberts.

Critical Flaw Found In Widely Used Netmask Open Source Module

March 30, 2021 Paul Roberts

An IP address parsing flaw in the netmask NPM module affects hundreds of thousands of applications that rely on it. But that may be just the tip of the iceberg, researchers warn.

Episode 208: Getting Serious about Hardware Supply Chains with Goldman Sachs’ Michael Mattioli

March 26, 2021 Paul Roberts

In this week’s Security Ledger Podcast, sponsored by Trusted Computing Group, we’re talking about securing the hardware supply chain. We’re joined by Michael Mattioli, a Vice President at Goldman Sachs who heads up that organization’s hardware supply chain security program.

Episode 207: Sarah Tatsis of BlackBerry on finding and Keeping Women in Cyber

March 19, 2021 Paul Roberts

In this week’s episode of the podcast (#207) we speak with Sara Tatsis of the firm Blackberry about her 20 year career at the legendary mobile device maker and the myriad challenges attracting women to- and keeping them in the information security field.

Podcast Player

Latest Podcast

Report: Epidemic of Flaws in Commercial and Open Source Code

Recent Podcast Episodes

Podcast Series

Spotlight

The Fight to Repair

CISO Close Up

Recent Posts

Episode 210: Moving The Goal Posts On Vendor Transparency: A Conversation With Intel’s Suzy Greenberg

Episode 209: Fortinet’s Renee Tarun on Scaling InfoSec To Meet Tomorrow’s Challenges

Critical Flaw Found In Widely Used Netmask Open Source Module

Episode 208: Getting Serious about Hardware Supply Chains with Goldman Sachs’ Michael Mattioli

Episode 207: Sarah Tatsis of BlackBerry on finding and Keeping Women in Cyber

Press Release

Industry First: StrikeReady AI Platform Moves Security Teams Beyond Basic, One-Dimensional AI-Driven Triage Solutions

SquareX to Uncover Data Splicing Attacks at BSides San Francisco, A Major DLP Flaw that Compromises Data Security of Millions

Gcore Super Transit Brings Advanced DDoS Protection and Acceleration for Superior Enterprise Security and Speed

SpyCloud Research Shows that Endpoint Detection and Antivirus Solutions Miss Two-Thirds (66%) of Malware Infections

Secure Ideas Achieves CREST Accreditation and CMMC Level 1 Compliance

Subscribe to Podcast

Security Ledger Publisher & Editor in Chief

Paul F. Roberts

Podcast Player

Latest Podcast

Report: Epidemic of Flaws in Commercial and Open Source Code

Recent Podcast Episodes

Podcast Series

Recent Posts

Share this:

Share this:

Share this:

Share this:

Share this:

Subscribe to Podcast

Security Ledger Publisher & Editor in Chief