The feds are pushing pretty hard to get software makers to create and manage Software Bills of Materials or SBoMs. What the heck is an an SBoM anyway and why is it important. A very non-technical comparison would be the list of ingredients in packaged food. Let’s say you are allergic to some food, say […]
Continue reading → [DISPLAY_ACURAX_ICONS]59% of cybersecurity executives at large and medium organizations say that they have LOST business due to product security concerns for connected and embedded devices. 45% say that customers want detailed information about what is in their devices, but only 11% of companies have high confidence that they can do that, even if they want […]
Continue reading → [DISPLAY_ACURAX_ICONS]I have been ranting about Software Bills of Material or SBoM for a while. This week I have two examples of why this is important – even critical. The first story is about a TCP/IP network stack and the vulnerability is called Amnesia:33. It impacts four open source libraries – uIP, FNET, picoTCP and Nut/Net. […]
Continue reading → [DISPLAY_ACURAX_ICONS]I bet there is a large chunk of the folks reading this that will say that we don’t use open source software. And then there is another large chunk that says we’re good; all up to date. My guess is that both of these statements are wrong. Synopsys did a study and found these two […]
Continue reading → [DISPLAY_ACURAX_ICONS]