[ThreatPost] Mandating a Zero-Trust Approach for Software Supply Chains

Sounil Yu, CISO at JupiterOne, discusses software bills of materials (SBOMs) and the need for a shift in thinking about securing software supply chains.

Source: Read More (Threatpost)

You might be interested in …

[ZDNet] Pay to play PrivateLoader spreads Smokeloader, Redline, Vidar malware

All posts, ZDNet

The pay-per-install malware is one of the most popular loaders on the market today. Source: Read More (Latest topics for ZDNet in Security)

Read More

[ZDNet] ProtonMail CEO says services must comply with laws unless based 15 miles offshore

All posts, ZDNet

After ProtoMail gave a climate activist’s IP address to French authorities under court order, the individual was identified and arrested shortly after. Source: Read More (Latest topics for ZDNet in Security)

Read More

[SANS ISC] BASE85 Decoding With base64dump.py, (Sat, Jul 17th)

All posts, Sans-ISC

Xavier’s diary entry “Multiple BaseXX Obfuscations” covers a malicious script that is encoded with different “base” encodings. Xavier starts with my tool base64dump.py, but he can not do the full decoding with base64dump, as it does not support BASE85. I’ve now added support for BASE85: base64dump.py version 0.0.0.16. (you can watch this video: “Adding BASE85 […]

Read More