The new European Union (EU) cybersecurity regulatory landscape has arrived. Organizations are now being faced with more demanding, challenging and fine-tuned cyber resilience requirements across their ...

The Biden administration is forging ahead on software bills of materials and other requirements to secure the software supply chain The White House has previewed plans to implement the security ...

Supply chain security continues to receive critical focus in the realm of cybersecurity, and with good reason: incidents such as SolarWinds, Log4j, Microsoft, and Okta software supply chain attacks ...

Over the past several months, the US government has introduced several new requirements affecting organizations that sell software to government agencies. Because these new requirements are complex, ...

AI-specific security testing has become vital as well. AI brings in some novel vulnerabilities and weaknesses that traditional scanners can’t find, such as training model poisoning, excessive agency, ...

Software security may finally be getting the attention it deserves as more countries institute necessary guidelines. But with threats increasing against the software supply chains, it is too soon to ...

Earlier this week, Chris DeRusha, federal CISO and deputy national cyber director in the White House, announced the release of Office of Management and Budget (OMB) guidance to ensure federal agencies ...

The Office of Management and Budget will shortly take feedback from industry on some of the language it plans to use in new cybersecurity self-attestation requirements for software vendors, according ...

Baking security into the software development process makes good technical and business sense. But getting your developers on board with security training is not necessarily going to be an easy task.

The administration is attempting to leverage the procurement powers of the federal government to bolster software cybersecurity for the first time. The White House announced plans this week to ...