Will feds mandate third-party code reviews? Developers say it’s a bad idea
Some industry groups are warning the U.S. government that third-party testing or review would be overly intrusive and might not add much benefit, especially if the focus is on source code or earlier stages of the development process.
Latest headlines
Employees rely too much on threat hunting teams to protect their own inboxes
‘Gatekeeper’ Google aims for safer extension installs, fewer phishing attacks
Fujifilm confirms ransomware attack on systems in Japan
Managing security in the spotlight: TikTok’s CSO Roland Cloutier to kick off InfoSec World
Supreme Court narrows interpretation of CFAA, to the relief of ethical hackers
News from the RSA Conference
Critical for who? The triumph and tragedy of CVSS as a risk rating tool
Can you trust your software? How to close the gaps
To achieve desired security outcomes, update and integrate your tech stack
Tech consolidation and the final acts of once vital point solutions
‘Data poisoning’ that leverage machine learning may be the next big attack vector
What makes North Korean hacking groups more creative?
From SW Labs
From CRA Business Intelligence
From the Collaborative
From our partners
Perspectives
More news
Self-service tool claims to execute cloud-based data access in five minutes
Post Colonial and JBS, Biden presses Russia to stop harboring ransomware gangs
Chinese hackers used Pulse Secure zero day vulnerability to infiltrate MTA systems
Only 17% of organizations encrypt at least half of their sensitive cloud data
Cyber certification program for SMBs emphasizes leadership, reducing risk
