Tag: software supply chain
-
Anchore: SBOM Generation Step-by-Step: Anchore Learning Week (Day 2)
Source URL: https://anchore.com/blog/sbom-generation-step-by-step-anchore-learning-week-day-2/ Source: Anchore Title: SBOM Generation Step-by-Step: Anchore Learning Week (Day 2) Feedly Summary: Welcome to day 2 of our 5-part series on Software Bills of Materials (SBOMs). In our previous post, we covered the basics of SBOMs and why they’re essential for modern software security. Now, we’re ready to roll up our…
-
Slashdot: Hundreds of E-Commerce Sites Hacked In Supply-Chain Attack
Source URL: https://it.slashdot.org/story/25/05/05/2034207/hundreds-of-e-commerce-sites-hacked-in-supply-chain-attack?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Hundreds of E-Commerce Sites Hacked In Supply-Chain Attack Feedly Summary: AI Summary and Description: Yes Summary: The text details a significant supply-chain attack affecting hundreds of e-commerce sites, including those of a large multinational company, that were compromised by malware capable of executing malicious code in browsers. This incident…
-
Anchore: SBOM Fundamentals: Anchore Learning Week (Day 1)
Source URL: https://anchore.com/blog/sbom-fundamentals-anchore-learning-week-day-1/ Source: Anchore Title: SBOM Fundamentals: Anchore Learning Week (Day 1) Feedly Summary: This blog post is the first in our 5-day series exploring the world of SBOMs and their role in securing the foundational but often overlooked 3rd-party software supply chain. Whether you’re just beginning your SBOM journey or looking to refresh…
-
The Register: AI software development: Productivity revolution or fraught with risk?
Source URL: https://www.theregister.com/2025/05/01/ai_software_development_productivity_revolution/ Source: The Register Title: AI software development: Productivity revolution or fraught with risk? Feedly Summary: We look at the state of AI software development – it’s not going away, but risks abound Analysis AI in software development has evolved rapidly since GitHub Copilot caught the world’s attention with its June 2021 preview…
-
Anchore: From War Room to Workflow: How Anchore Transforms CVE Incident Response
Source URL: https://anchore.com/blog/from-war-room-to-workflow-how-anchore-transforms-cve-incident-response/ Source: Anchore Title: From War Room to Workflow: How Anchore Transforms CVE Incident Response Feedly Summary: When CVE-2025-1974 (#IngressNightmare) was disclosed, incident response teams had hours—at most—before exploits appeared in the wild. Imagine two companies responding: Which camp would you rather be in when the next critical CVE drops? Most of us…
-
Anchore: Accelerating Container Security on AWS: Introducing the Anchore Enterprise Cloud Image
Source URL: https://anchore.com/blog/introducing-the-anchore-enterprise-cloud-image/ Source: Anchore Title: Accelerating Container Security on AWS: Introducing the Anchore Enterprise Cloud Image Feedly Summary: Today, we’re launching the Anchore Enterprise Cloud Image, a pre-built image designed to dramatically reduce the complexity and time associated with deploying Anchore Enterprise in your AWS environment. Anchore Enterprise Cloud Image is designed for practitioners…