Beth Pariseau · @BPariseau
318 followers · 143 posts · Server hachyderm.io@chainguard Enforce now automates #SBOMs, but execs and an early customer say they aren't the ultimate answer to #softwaresupplychainsecurity.
#vulnerabilityscanning #softwaresecurity #cybersecurity #containerimages #chainguardimages #wolfi
#SBOMs #softwaresupplychainsecurity #vulnerabilityscanning #softwaresecurity #cybersecurity #containerimages #chainguardimages #Wolfi
spaf · @spaf
4196 followers · 1893 posts · Server mstdn.socialDo you still believe the myth that cybersecurity vendors have your best interests in mind when they are selling you their products?
That, and 175 other myths and misconceptions, are addressed in https://informit.com/cybermyths, which has been out for 4 months now. What are you waiting for?
#softwaresecurity #OpenSource #myths #CyberSecurity
Beth Pariseau · @BPariseau
308 followers · 116 posts · Server hachyderm.io
Free #Atlassian #Jira #cloud #DevSecOps tab offers a glimpse into possibilities for future expansion in #softwaresecurity for the vendor. Katie Norton of IDC weighs in on key areas of opportunity.
#softwaredevelopment #vulnerabilitymanagement #devopssecurity #cybersecurity
#atlassian #jira #cloud #devsecops #softwaresecurity #softwaredevelopment #vulnerabilitymanagement #devopssecurity #cybersecurity
🏁⚡Omar Two Tone⚡🏁:verified: · @omartwotone
168 followers · 1876 posts · Server ioc.exchange#OpenSource Software Security Handbook – Best Practices for Securing Your Projects 👇💡👌
https://www.freecodecamp.org/news/oss-security-best-practices/amp/
#programming #coding #bestpractices #projects #software #softwaresecurity
#opensource #programming #coding #bestpractices #projects #software #softwaresecurity
detektor.fm :dfm: · @detektorfm
1816 followers · 186 posts · Server social.detektor.fmOb im Recht, der Philosophie oder der Software-Forschung, Sicherheit ist ein Thema in vielen unterschiedlichen Forschungsfeldern. Welche neuen Erkenntnisse aus der Wissenschaft gibt es?
#MaxPlanckGesellschaft #Sicherheit #SoftwareSecurity #StochastischerTerrorismus #Strafrecht #Forschungsquartett
#maxplanckgesellschaft #sicherheit #softwaresecurity #stochastischerterrorismus #strafrecht #forschungsquartett
Sean D. Mack · @smack
52 followers · 61 posts · Server techhub.social
Great to join Creating an Unbreakable Chain of Custody within CI/CD Pipelines! with Scribe, Barak Brudo, and Angel Rivera.
As software development becomes more complex, ensuring secure and reliable software delivery is crucial.
#cicd #chainofcustody #softwaresecurity
Hendrik · @intelligensbestien
0 followers · 4 posts · Server me.dmLog4j programmers, wake up! 15+ months after fixing a critical vulnerability, software still uses the old, broken version. Take it offline & force a fix NOW. Don't wait for a catastrophic data breach to act. Your negligence risks the entire industry. #log4j #softwaresecurity
Gary McGraw · @cigitalgem
473 followers · 559 posts · Server sigmoid.social
I had a blast with the Irius Risk North American crew, talking #SoftwareSecurity #swsec #appsec #ThreatModelling
Time to automate the finding of security flaws at the architecture level!
#softwaresecurity #swsec #appsec #threatmodelling
InfoQ · @infoq
473 followers · 70 posts · Server techhub.social
#ICYMI Learn about the #DataSharding patterns & how the #ApacheShardingSphere project solves the data sharding challenges.
#InfoQ article by Trista Pan: http://bit.ly/41biCRy
#AI #ML #DataEngineering #Scalability #Performance #SoftwareSecurity #Cryptography
#icymi #datasharding #apacheshardingsphere #infoq #AI #ml #DataEngineering #scalability #performance #softwaresecurity #cryptography
Gary McGraw · @cigitalgem
470 followers · 438 posts · Server sigmoid.social
Join
@cigitalgem
&
@adamshostack , two heavyweights of #softwaresecurity #swsec & #threatmodeling, as they go head to head explaining and debating the future of #MachineLearning and threat modeling.
#softwaresecurity #swsec #threatmodeling #machinelearning #mlsec
Redbeard · @redbeardsec
15 followers · 60 posts · Server infosec.exchangePreventing unauthorized software installation is essential for protecting your computer from malicious attacks. #MalwareProtection #SoftwareSecurity #SafeComputing
https://redbeardsec.com/preventing-unauthorized-software-installation-on-your-network/
#malwareprotection #softwaresecurity #safecomputing
Tony Morbin · @tonymorbin
7 followers · 109 posts · Server infosec.exchange
Examining open-source code in repository to ensure it's secure. https://www.inforisktoday.com/contrast-ceo-on-its-tough-to-guard-open-source-software-a-20924 Contrast Security's Alan Naumann: Software development happening faster than ever, exponential increase in attacks on the software layer. Michael Novinson #cybersecurity #softwaresecurity
#cybersecurity #softwaresecurity
Edgar Weippl · @weippl
0 followers · 3 posts · Server infosec.exchangeRT @sec4dev: You missed the @sec4dev 2022!? Be part of #austrias only #softwaresecurity conference and join our family. Watch Philipp Reisinger and learn more about "Tackling Software Rot" -
noplasticshower · @noplasticshower
251 followers · 1814 posts · Server zirk.us@hapalochlaena @ceresbzns @PogoWasRight software ha killed a number of people already (see my book Software Fault Injection for more on that. Yet bad software still pervades the universe. I helped to establish #swsec #softwaresecurity to use security as a lever to make better software. We have made some progress, but not enough.
FuzzingWeekly · @FuzzingWeekly
17 followers · 4 posts · Server ioc.exchange
#FuzzingWeekly CW 50
Understanding Fuzz Testing in Go ➡️ https://blog.jetbrains.com/go/2022/12/14/understanding-fuzz-testing-in-go/
Fuzzing Golang msgpack for fun and panic ➡️ https://redcanary.com/blog/fuzzing/
Finding JIT Optimizer Bugs using SMT Solvers and Fuzzing ➡️ https://pypy.org/posts/2022/12/jit-bug-finding-smt-fuzzing.html#
#fuzzingweekly #fuzzing #softwaresecurity
Grant Ongers :verified: · @rewtd
4 followers · 17 posts · Server infosec.exchange
RT @InfosecVandana@twitter.com
Last week was full of amazing people and emotions. After nearly three years we met for the @OWASP@twitter.com Global AppSec San Francisco.
Amazing meeting everyone from the speakers, volunteers, Staff and Board Members and Keynote speakers
#owasp #softwaresecurity @snyksec@twitter.com #CyberSec
🐦🔗: https://twitter.com/InfosecVandana/status/1595439430978146304
#owasp #softwaresecurity #cybersec
Tweede golf · @tweedegolf
100 followers · 37 posts · Server fosstodon.org
Read about our #opensource work implementing the Network Time Protocol in #rustlang!
https://tweedegolf.nl/nl/blog/75/implementing-the-network-time-protocol-ntp-in-rust
Folkert walks you through the whys and hows of this security-motivated implementation.
#ntp #networktimeprotocol #networktiming #opensourcesecurity #softwaresecurity
#opensource #rustlang #ntp #NetworkTimeProtocol #networktiming #opensourcesecurity #softwaresecurity
Vandana Verma :verified: · @infosecvandana
85 followers · 5 posts · Server infosec.exchange
#checkout the wonderful #keynote by Anna Westelius OWASP® Foundation #GlobalAppSec #SanFrancisco happening now #owasp #security #opensource #softwaresecurity @Netflix
#checkout #keynote #globalappsec #sanfrancisco #owasp #security #opensource #softwaresecurity
Code Intelligence · @CodeIntelligence
21 followers · 6 posts · Server ioc.exchangeToday's the day!
The stream for #FuzzCon Europe - Automotive Edition will go live at 4:00 PM CET🔴
Join here: https://fuzzcon.eu/automotive-edition
#fuzzcon #automotive #softwaresecurity #fuzzing
Code Intelligence · @CodeIntelligence
21 followers · 6 posts · Server ioc.exchangeToday's the day!
The stream for #FuzzCon Europe - Automotive Edition will go live at 4:30 PM CET🔴
Join here: https://fuzzcon.eu/automotive-edition
#fuzzcon #automotive #softwaresecurity #fuzzing