Software program provide chain assaults are on the rise — are you in danger? • Graham Cluley

0
103


Software supply chain attacks are on the rise — are you at risk?

Graham Cluley Safety Information is sponsored this week by the parents at Sysdig. Because of the good workforce there for his or her assist!

Assaults focusing on the software program provide chain are on the rise and splashed throughout the information. SolarWinds raised consciousness concerning the threat. More moderen occasions, just like the Federal Civilian Government Department (FCEB) company breach, amplified the priority.

Software program provide chain threat isn’t going wherever. As improvement groups more and more depend on open supply software program and third-party code, the chance of publicity to each identified and unknown safety vulnerabilities considerably will increase.

The Sysdig 2023 Cloud-Native Safety and Utilization report discovered that 87% of container photographs have excessive or vital vulnerabilities, which highlights the significance of runtime safety. There’s quite a lot of speak about shift left, however threats come up in manufacturing. Then what?

Completely different assault vectors exist, and points like ransomware, cryptomining, or different compromises aren’t prevented by scanning code or photographs. To not point out that container vulnerabilities are found each day. Your container, which appears protected one second, can grow to be a possible sufferer of a newly disclosed exploit. Shift-left alone shouldn’t be sufficient.

The objective of each cybersecurity program must be full lifecycle safety.

real-world information, the sixth annual Sysdig Cloud-Native Safety and Utilization report reveals how international corporations of all sizes and industries are utilizing and securing cloud and container environments. This yr, the report highlighted key CISO priorities, together with software program provide chain threat, zero belief, and value administration. Learn the key takeaways from Sysdig’s report.

Download Sysdig report

Obtain the total Cloud-Native Safety and Utilization Report to uncover the newest insights like:

  • How corporations can save as much as $10M in cloud prices
  • 87% of photographs embrace a excessive or vital vulnerability
  • 90% of accounts have extreme permissions

Be taught Extra ➔

About Sysdig

Sysdig delivers cloud and container safety so you may cease assaults with no wasted time. Detect threats in real-time utilizing ML, curated guidelines and Sysdig Risk Analysis Insurance policies. Prioritize vulnerabilities based mostly on in-use threat publicity and repair quick with context. Achieve agentless visibility mixed with runtime safety powered by eBPF and Falco.


If you happen to’re thinking about sponsoring my web site for per week, and reaching an IT-savvy viewers that cares about laptop safety, you may discover extra info right here.


LEAVE A REPLY

Please enter your comment!
Please enter your name here