Recent attacks on Software Supply Chains have resulted in massive impacts on industry and institutions causing damage and loss of intellectual property on a global scale.
Vendors and operators in software supply chains are attractive targets for cyber criminals as a way to infiltrate end user organizations on a large scale.
One of the recent examples of this, the SolarWinds Incident, demonstrated that even large software vendors with a strong cybersecurity background can be compromised, and that most organizations – including Fortune 500 companies and several US federal agencies – simply trust the software they procure and use without verifying its security.
This means that organizations really need a defined approach to ensuring software security. Providers of commercial off the shelf software and custom software, as well as internal development teams need to follow Secure Development Lifecycles to ensure software is secure from the very start. In addition, organizations need...
Subscribe to our Podcasts
How can we help you