supply chain Archives - Developer Tech News https://www.developer-tech.com/news/tag/supply-chain/ Gaming, Apps, HTML5, Java, PHP, C#, .net, IOT Fri, 18 Aug 2023 13:54:36 +0000 en-GB hourly 1 https://www.developer-tech.com/wp-content/uploads/sites/3/2020/09/dev-icon-60x60.png supply chain Archives - Developer Tech News https://www.developer-tech.com/news/tag/supply-chain/ 32 32 Mathew Payne, GitHub: Protecting code while nurturing user experience https://www.developer-tech.com/news/2023/aug/18/mathew-payne-github-protecting-code-nurturing-user-experience/ https://www.developer-tech.com/news/2023/aug/18/mathew-payne-github-protecting-code-nurturing-user-experience/#respond Fri, 18 Aug 2023 13:54:35 +0000 https://www.developer-tech.com/?p=45057 Developer caught up with Mathew Payne, Principal Field Security Specialist at GitHub, to discuss the platform’s security strategies and how they aim to strike a balance between robustness and a seamless user experience. At the heart of GitHub’s security philosophy lies a commitment to safeguarding user code. Payne emphasised that a major focus is on... Read more »

The post Mathew Payne, GitHub: Protecting code while nurturing user experience appeared first on Developer Tech News.

]]>
https://www.developer-tech.com/news/2023/aug/18/mathew-payne-github-protecting-code-nurturing-user-experience/feed/ 0
Checkmarx uncovers supply chain attacks targeting banking https://www.developer-tech.com/news/2023/jul/21/checkmarx-uncovers-supply-chain-attacks-targeting-banking/ https://www.developer-tech.com/news/2023/jul/21/checkmarx-uncovers-supply-chain-attacks-targeting-banking/#respond Fri, 21 Jul 2023 12:24:45 +0000 https://www.developer-tech.com/?p=44926 Checkmarx has uncovered a new and sophisticated cyber threat targeting the banking sector. The security testing firm’s research team detected two distinct open-source software supply chain attacks targeting financial institutions. These attacks, which involved advanced techniques and deceptive tactics, have raised alarm bells among cybersecurity experts. Attack one: NPM The first attack occurred on April... Read more »

The post Checkmarx uncovers supply chain attacks targeting banking appeared first on Developer Tech News.

]]>
https://www.developer-tech.com/news/2023/jul/21/checkmarx-uncovers-supply-chain-attacks-targeting-banking/feed/ 0
Visual Studio Marketplace is the latest supply chain attack vector https://www.developer-tech.com/news/2023/jan/09/visual-studio-marketplace-supply-chain-attack-vector/ https://www.developer-tech.com/news/2023/jan/09/visual-studio-marketplace-supply-chain-attack-vector/#respond Mon, 09 Jan 2023 14:14:15 +0000 https://www.developer-tech.com/?p=44202 Aqua Security researchers have found that hackers are using Visual Studio Marketplace to conduct supply chain attacks. In a new report, the researchers uncovered that attackers could impersonate popular VS Code extensions to trick developers into downloading malicious versions. VS Code is the most popular IDE, with around 74.48 percent of developers using it. The... Read more »

The post Visual Studio Marketplace is the latest supply chain attack vector appeared first on Developer Tech News.

]]>
https://www.developer-tech.com/news/2023/jan/09/visual-studio-marketplace-supply-chain-attack-vector/feed/ 0
GitHub will mandate 2FA to help secure the software supply chain https://www.developer-tech.com/news/2022/may/04/github-mandate-2fa-help-secure-software-supply-chain%ef%bf%bc/ https://www.developer-tech.com/news/2022/may/04/github-mandate-2fa-help-secure-software-supply-chain%ef%bf%bc/#respond Wed, 04 May 2022 15:03:45 +0000 https://www.developer-tech.com/?p=43112 GitHub will require all users who contribute code on the platform to use 2FA as part of its latest security improvements. Attacks on the software supply chain are on the increase. GitHub, which has over 83 million code-contributing users, is stepping up to the plate to protect developers and the software supply chain with this... Read more »

The post GitHub will mandate 2FA to help secure the software supply chain appeared first on Developer Tech News.

]]>
https://www.developer-tech.com/news/2022/may/04/github-mandate-2fa-help-secure-software-supply-chain%ef%bf%bc/feed/ 0
Large-scale supply chain attack used 218 malicious NPM packages https://www.developer-tech.com/news/2022/mar/24/large-scale-supply-chain-attack-used-218-malicious-npm-packages/ https://www.developer-tech.com/news/2022/mar/24/large-scale-supply-chain-attack-used-218-malicious-npm-packages/#respond Thu, 24 Mar 2022 14:32:40 +0000 https://developer-tech.com/?p=42774 A large-scale supply chain attack has been uncovered that used 218 malicious NPM packages. Researchers from JFrog claim that several of their automated analysers started throwing up alerts regarding a set of packages in the npm registry earlier this week. Over a few days, the number of packages swelled from around 50 packages to more... Read more »

The post Large-scale supply chain attack used 218 malicious NPM packages appeared first on Developer Tech News.

]]>
https://www.developer-tech.com/news/2022/mar/24/large-scale-supply-chain-attack-used-218-malicious-npm-packages/feed/ 0
Software supply chain attacks increased over 300% in 2021 https://www.developer-tech.com/news/2022/jan/20/software-supply-chain-attacks-increased-over-300-percent-in-2021/ https://www.developer-tech.com/news/2022/jan/20/software-supply-chain-attacks-increased-over-300-percent-in-2021/#respond Thu, 20 Jan 2022 13:54:28 +0000 https://developer-tech.com/?p=42092 We all knew there was an increase in software supply chain attacks in 2021, but a new study has quantified just how bad things got. Argon Security – recently acquired by Aqua Security – published the latest edition of its annual Software Supply Chain Security Review this week. The headline stat from Argon’s report that... Read more »

The post Software supply chain attacks increased over 300% in 2021 appeared first on Developer Tech News.

]]>
https://www.developer-tech.com/news/2022/jan/20/software-supply-chain-attacks-increased-over-300-percent-in-2021/feed/ 0
Sonatype analysis reveals a 73 percent surge in open-source demand https://www.developer-tech.com/news/2021/sep/15/sonatype-analysis-reveals-73-percent-surge-open-source-demand/ https://www.developer-tech.com/news/2021/sep/15/sonatype-analysis-reveals-73-percent-surge-open-source-demand/#respond Wed, 15 Sep 2021 13:22:58 +0000 https://developer-tech.com/?p=40952 A report from Sonatype has revealed a 73 percent surge in the demand for open-source despite a year of high profile vulnerabilities. The growing use of open-source to keep up with the pace of modern development makes it a prime target for cybercriminals. We’ve seen this multiple times in practice over the past year with... Read more »

The post Sonatype analysis reveals a 73 percent surge in open-source demand appeared first on Developer Tech News.

]]>
https://www.developer-tech.com/news/2021/sep/15/sonatype-analysis-reveals-73-percent-surge-open-source-demand/feed/ 0
Checkmarx acquires Dustico in wake of increasing supply chain attacks https://www.developer-tech.com/news/2021/aug/06/checkmarx-acquires-dustico-wake-increasing-supply-chain-attacks/ https://www.developer-tech.com/news/2021/aug/06/checkmarx-acquires-dustico-wake-increasing-supply-chain-attacks/#respond Fri, 06 Aug 2021 12:38:38 +0000 https://developer-tech.com/?p=40696 Developer-centric app security testing (AST) firm Checkmarx has acquired Dustico to help counter the increasing threat of supply chain attacks. “We’re thrilled to welcome Dustico and its team to Checkmarx as the Israeli tech ecosystem continues to push the boundaries of cybersecurity innovation and talent,” said Emmanuel Benzaquen, CEO, Checkmarx. “Blending Dustico’s differentiated approach to... Read more »

The post Checkmarx acquires Dustico in wake of increasing supply chain attacks appeared first on Developer Tech News.

]]>
https://www.developer-tech.com/news/2021/aug/06/checkmarx-acquires-dustico-wake-increasing-supply-chain-attacks/feed/ 0