Posts Tagged ‘Open source security’

Software Bill of Material and Vulnerability Management Blind Spots

Filed in App Security, Security vulnerabilities on Aug.05, 2022

Software Bill of Material and Vulnerability Management Blind Spots Open source software is everywhere (which is not a bad thing in itself). However, many buyers don’t have inventory of open source components included in software products they are buying. Business even fail in keeping tack of open source components used in internally developed applications. As […]

Tags: ,

Leave a Comment

The state of open source security in 2022

Filed in Open Network on Apr.13, 2022

In this video for Help Net Security, Kurt Seifried, Chief Blockchain Officer and Director of Special Projects at Cloud Security Alliance, talks about the state of open source security in 2022. Open source is everywhere, it’s in everything, and everyone is using it. It is safe to say that almost any solution with a web server […]

Tags:

Leave a Comment

Open source vulnerabilities go undetected for over four years

Filed in Security vulnerabilities on Dec.04, 2020

GitHub has analyzed over 45,000 active directories and found that open source vulnerabilities often go undetected for more than four years. Source: Open source vulnerabilities go undetected for over four years – Help Net Security The State of Open Source Security Vulnerabilities Resources for Searching and Analyzing Online Information Advanced Sciences and Technologies for Security […]

Tags: , ,

Leave a Comment

  • subscribe

  • Advertising

  • Click below to Follow DISC InfoSec blog

      👇           👇           👇

    Follow DISC InfoSec blog

    DISC InfoSec Titles

  • DISC InfoSec Services


    👉 Download a Virtual CISO (#vCISO) and Security Advisory Fact Sheet & Cybersecurity Cheat Sheet

  • Get a Cyber Aware Cheat Sheet now!

  • “Like” our FB DISC InfoSec page

    >>> DISC InfoSec Facebook Page <<<

  • DISC InfoSec Store

    DISC online store for recommended InfoSec products

  • DISC InfoSec Online Services

    DISC InoSec Services
  • Download ISO27k Standards

    vCISO as a service



  • Search DISC InfoSec blog

  • Meta

  • Blogroll

  • Archives

  • Categories

  • Tags

    arra and hitech Business china CISA CISO Cloud computing cloud security Computer security Credit card cyberwarfare dark web data breach data security facebook Financial services Google Hacking Health Insurance Portability and Accountability Act Identity Theft Information Security Information Security Management System International Organization for Standardization isms ISO/IEC 27001 iso 27001 ISO 27001 2013 Gap Assessment iso 27001 certification iso 27002 Log4j Log4shell Malware Microsoft Payment Card Industry Data Security Standard pci dss Pegasus spyware phishing privacy Ransomware Protection Playbook Risk Assessment Risk management Security Security Risk Assessment Spyware United States vCISO

  • For an InfoSec and Compliance question

    Contact us

    Support us
  • Best Sellers Books in Computer Security

    New Releases in Computer Security