The DHS and CISA booth at the 2019 RSA conference in San Francisco. (Scoop News Group photo) The Cybersecurity and Infrastructure Security Agency (CISA) and other federal agencies released guidance ...

Value stream management involves people in the organization to examine workflows and other processes to ensure they are deriving the maximum value from their efforts while eliminating waste — of ...

There's a false sense of security around open source code, according to Trustwave researchers Brandon Myers and Assi Barak. Their deeper point was that open source code is prone to vulnerabilities ...

U.S. Transportation Command’s Command, Control, Communications and Cyber Systems Directorate information system technicians, Thomas Roehm (left) and Ross Lee (right) add software and image new laptops ...

In the intricate landscape of software development, the question of whether open source software provides superior security compared to proprietary alternatives has sparked a longstanding debate. The ...

Software supply chain attacks are evolving as open source and AI-generated code introduce new third-party risks. Learn how visibility and shift-left security reduce exposure.

A reflection of the Department of Homeland Security logo in the eyeglasses of a cybersecurity analyst (Mark J. Terrill/AP/File) There’s no question that open-source software is central to the ...

Since Russian troops invaded Ukraine more than three years ago, Russian technology companies and executives have been widely sanctioned for supporting the Kremlin. That includes Vladimir Kiriyenko, ...

In 2023, we’ve seen a lot of emphasis placed on strategies, regulations and technologies aimed at improving software security. Don't expect this interest to wane in 2024 as these discussions are ...

GitHub, Google, IBM, Red Hat, Microsoft, and VMware are just a few founding members of the Linux Foundation’s latest initiative that aims to smash open source software security bugs. OpenSSF’s ...

Two years ago, the joint government-private sector response to the Log4j vulnerability that spawned 800,000 attacks worldwide led to the Enduring Security Framework for federal agencies adopting open ...

Get the latest federal technology news delivered to your inbox. The federal government wants public input on how to better secure open source software — an increasingly critical component of the ...