SBOM – TheCyberThrone

Decoding CISA’s draft guidance on Product Security Bad Practices

The U.S. CISA and the FBI have released a draft ‘Product Security Bad Practices’ guidance aimed at helping software manufacturers reduce customer risk by prioritizing security throughout the product development…

PravinKarthik October 29, 2024

Hardware Supply Chain Risk Assessment from CISA

The U.S. CISA has released a new framework designed to improve the accuracy of risk assessments in the hardware supply chain. The new Hardware Bill of Materials Framework for Supply Chain Risk…

PravinKarthik September 27, 2023

ServiceNow set to integrate Snyk capabilities

Snyk has announced that it secured $25 million from ServiceNow. By this, it brings the total amount Snyk has secured to $1.4 billion since 2020. Snyk, with its developer security…

PravinKarthik January 26, 2023

Outdated OpenSSL Version used by major vendors

Researchers has discovered devices from Dell, HP, and Lenovo using outdated versions of the OpenSSL cryptographic library. The OpenSSL software library allows secure communications over computer networks against eavesdropping or…

PravinKarthik November 26, 2022

Tanium adds SBOM Based Vulnerability Detection

Tanium updated with a capability for detecting libraries and software packages with known vulnerabilities within a software bill of materials (SBOM) manifest that can then be used to automate remediation…

PravinKarthik November 5, 2022