The Security Ledger with Paul F. Roberts

March 12, 2025 | Paul Roberts

Report: Epidemic of Flaws in Commercial and Open Source Code

ReversingLabs' 2025 Software Supply Chain Security Report finds that security flaws in commercial and open source code are epidemic as hackers target supply chains including those for cryptocurrency and AI in a play for access to sensitive data and IT assets.

Listen & Read Article

Recent Podcast Episodes

Episode 260: The Art of Teaching Secure Coding with Tanya Janca

36:32

Security Validation: A Deep Dive with Cymulate's David Kellerman

Pacific Rim: Sophos’ 6 Year Battle To Beat Back China State Hackers

33:42

Report Finds Lack of Talent, Tools Frustrates Cyber Investigations

Episode 258: Broken Brokers - Optery's Fight To Claw Back Your Personal Data

36:16

Podcast Series

Spotlight

118 Episodes

Spotlight podcasts bring Security Ledger's audience up close and personal with some of the leading cybersecurity firms in the world: exploring the history, technology and vision that drives innovation in the information security field. Hosted by Security Ledger Editor in Chief Paul Roberts, this premium podcast features interviews with leading executives, security researchers and entrepreneurs as they chart the future of the cybersecurity industry.

Series Details

The Fight to Repair

8 Episodes

How do we keep the Internet of Things from maturing into the Internet of Broken, Vulnerable and Unsupported Things? A right to repair is key. In this series of interviews we explore the issues complicating repair on connected devices and how an important consumer and property right is threatened by the headlong growth of the IOT.

Series Details

CISO Close Up

19 Episodes

Cloud. Internet of Things. DEVOPS. The job of Chief Information Security Officer has never been more challenging. How are world's leading CISOs taking on the challenges that a fast-evolving technology and risk landscape throw at them? In CISO Close Up, Security Ledger Editor in Chief Paul Roberts talks shop with some of the best CISOs in the private and public sectors to get their thoughts on the job.

Series Details

Recent Posts

Michael Trites Joins Aembit as Senior Vice President of Global Sales

February 5, 2025 cybernewswire

Silver Spring, Maryland, 5th February 2025, CyberNewsWire

SpyCloud Pioneers the Shift to Holistic Identity Threat Protection

February 4, 2025 cybernewswire

Austin, TX, USA, 4th February 2025, CyberNewsWire

Doppler announces integration with Datadog to streamline security and monitoring

January 30, 2025 cybernewswire

San Francisco, United States / California, 30th January 2025, CyberNewsWire

SquareX Discloses “Browser Syncjacking” , a New Attack Technique that Provides Full Browser and Device Control, Putting Millions at Risk

January 30, 2025 cybernewswire

Palo Alto, USA, 30th January 2025, CyberNewsWire

A Subaru being remotely unlocked following a hack of the owner's STARLINK account. (Image courtesy of Sam Curry)

More Of The Shame: Software Flaw Exposes Millions of Subarus, Rivers of Driver Data

January 26, 2025 Paul Roberts

A now-patched flaw in Subaru’s STARLINK connected vehicle service exposed location information and driver data for millions of vehicles with nothing more than the vehicle’s license plate number – the latest jaw dropping smart vehicle security flaw discovered by the researcher Sam Curry.

Podcast Player

Latest Podcast

Report: Epidemic of Flaws in Commercial and Open Source Code

Recent Podcast Episodes

Podcast Series

Spotlight

The Fight to Repair

CISO Close Up

Recent Posts

Michael Trites Joins Aembit as Senior Vice President of Global Sales

SpyCloud Pioneers the Shift to Holistic Identity Threat Protection

Doppler announces integration with Datadog to streamline security and monitoring

SquareX Discloses “Browser Syncjacking” , a New Attack Technique that Provides Full Browser and Device Control, Putting Millions at Risk

More Of The Shame: Software Flaw Exposes Millions of Subarus, Rivers of Driver Data

Press Release

SquareX to Uncover Data Splicing Attacks at BSides San Francisco, A Major DLP Flaw that Compromises Data Security of Millions

Gcore Super Transit Brings Advanced DDoS Protection and Acceleration for Superior Enterprise Security and Speed

SpyCloud Research Shows that Endpoint Detection and Antivirus Solutions Miss Two-Thirds (66%) of Malware Infections

Secure Ideas Achieves CREST Accreditation and CMMC Level 1 Compliance

Brinker Named Among “10 Most Promising Defense Tech Startups of 2025”

Subscribe to Podcast

Security Ledger Publisher & Editor in Chief

Paul F. Roberts

Podcast Player

Latest Podcast

Report: Epidemic of Flaws in Commercial and Open Source Code

Recent Podcast Episodes

Podcast Series

Recent Posts

Share this:

Share this:

Share this:

Share this:

Share this:

Subscribe to Podcast

Security Ledger Publisher & Editor in Chief