pdf Download (1.51 MB)

This survey was conducted online by CSA from January to February 2022 and received 340 responses from IT and security professionals from various organization sizes and locations. CSA’s research team performed the data analysis and interpretation for this report.

default Download

Discover the concerning trend of software supply chain attacks that continue to surge, even two years after the SolarWinds hack. Malicious exploits leveraging open source modules are multiplying in the commercial sector, with a significant rise in attacks since 2020 and a steady increase in 2022. Notably, npm, a popular open source repository, witnessed a staggering 100 times increase in malicious package uploads compared to 2020, while PyPi also suffered from tainted modules targeting cryptocurrency mining and malware distribution.

default Download

ReversingLabs analysis of software supply chain attacks and data from its industry-leading software risk analysis platform reveal important trends related to software supply chain security.

pdf Download (1.04 MB)

U.S. Securities & Exchange Commission Cybersecurity Risk Management, Governance & Incident Disclosure Rules

default Download

Sevco’s IT Asset Intelligence Platform provides a comprehensive view into the assets in your organization’s IT environment, enabling you to validate continuous compliance with regulatory standards and alert to noncompliant assets immediately, enabling speedy remediation.

default Download

Software supply chain attacks have seen triple-digit increases, but few organizations have taken steps to evaluate the risks of these complex attacks.

pdf Download (2.15 MB)

SaaS Security Posture Management (SSPM) solutions enable security teams to handle the ever-growing challenges brought on by the new SaaS app landscape by continuously assessing security risks and managing the SaaS app security posture.

default Download

According to research by ReversingLabs, software supply chain threats have risen 1300% from 2021 to 2023.

pdf Download (686 KB)

How to use SBOMs to strengthen the security of your software supply chain for cloud-native applications

pdf Download (3.31 MB)

What to look for when purchasing privacy software

pdf Download (4.04 MB)

Solution Brief

pdf Download (195 KB)

The NVIDIA Product Security organization transitioned from Anchore open source to Anchore Enterprise for continuous container security, driving increased scalability and productivity, policy-based compliance, and role-based reporting for business units and security teams.