Veracode unravels 12-layer npm attack to find RAT https://www.developer-tech.com/news/veracode-unravels-12-layer-npm-attack-find-rat/ #veracode #malware #javascript #developers #coding #programming #infosec #opensource #security #tech #news #technology

This week they want do a PoC with #VeraCode and #GitHub

How that will be more cheap than #GitLab Ultimate price?

I had created a report in which I evaluated all missing features from GitHub that need to be contracted to compensate GitLab Ultimate.

Values from GitLab was $570K year, versus $1.04M-$2.35M(value depends on the 3rd party tool)

The total is based on 600 licenses.

Waarom checkt #Veracode mijn pom? 🤔

Dus dan schrijf je software. Die software maakt gebruik van dependencies. In die dependencies kunnen vulnerabilities zitten. En dan zeg je in je dependency management: doe eens even de juiste versie van die transitive dependency gebruiken. En dus komt alleen de juiste versie in mijn JAR terecht. En dan zegt Veracode: check, die zie ik, maar ik leid uit je pom ook nog eens een impliciete versie van diezelfde dependency af. En die is vulnerable. Foei. 🤨

Security products like #veracode need to stop forcing customers to follow outdated password requirements.

Encore Edition: Veracode CEO Sam King on Infosec’s Leaky Talent Pipeline - Women are more than 50% of the population, but barely 20% of the information security workforce. Why... https://feeds.feedblitz.com/~/646418110/0/thesecurityledger~Encore-Edition-Veracode-CEO-Sam-King-on-Infosec%e2%80%99s-Leaky-Talent-Pipeline/ #womenintheworkforce #womenshistorymonth #womanexecutive #cybersecurity #companies #diversity #spotlight #business #podcasts #veracode

Holiday Shopping Craze, COVID-19 Spur Retail Security Storm - Veracode's Chris Eng discusses the cyber threats facing shoppers who are going online due to the p... https://threatpost.com/holiday-shopping-covid-19-retail-security/160550/ #vulnerabilities #holidayshopping #amazonprimeday #onlineshopping #retailsecurity #retailsoftware #websecurity #blackfriday #cybermonday #podcasts #covid-19 #magecart #pandemic #veracode #podcast #retail #target

Open source libraries a big source of application security flaws - How many vulnerabilities lurk inside the open source libraries that today’s developers happily bor... more: https://nakedsecurity.sophos.com/2020/05/27/open-source-libraries-a-big-source-of-application-security-flaws/ #developmentlibraries #opensourcebugs #vulnerability #veracode

70 Percent of Mobile, Desktop Apps Contain Open-Source Bugs - A lack of awareness about where and how open-source libraries are being used is problematic, resea... more: https://threatpost.com/70-of-apps-open-source-bugs/156040/ #securityvulnerabilities #mostrecentthreatlists #percentageofapps #vulnerabilities #mobilesecurity #appsecurity #opensource #codereuse #libraries #thereport #veracode #bugs #iot