Rogue security software

OpenSSF Announces New Members, Guiding Software Security Principles at OpenSSF Day Japan

Retrieved on: 
Monday, December 4, 2023

TOKYO, Dec. 3, 2023 /PRNewswire/ -- The Open Source Security Foundation (OpenSSF), a cross-industry initiative of the Linux Foundation that focuses on sustainably securing open source software (OSS), announced new members from leading technology firms and a new set of Secure Software Development Guiding Principles at OpenSSF Day Japan.

Key Points: 
  • "We're delighted that our new members are joining the OpenSSF," said Omkhar Arasaratnam, General Manager of the OpenSSF.
  • Today, the OpenSSF hosts OpenSSF Day Japan at Open Source Summit Japan in Tokyo.
  • OpenSSF Day is an exciting opportunity for maintainers, contributors and others in cybersecurity to learn more about ongoing efforts to secure the open source software ecosystem.
  • At the start of OpenSSF Day Japan, OpenSSF released the Secure Software Development Guiding Principles that describe a series of foundational practices to help provide better assurance and security for organizations leveraging them.

Fortress Information Security Bolsters Software Attestation Capabilities Ahead of Expected 2024 Deadline for Federal Agencies

Retrieved on: 
Monday, October 23, 2023

ORLANDO, Fla., Oct. 23, 2023 /PRNewswire/ -- Today, Fortress Information Security released new software attestation capabilities to enable government agencies and government contractors to meet stringent software security mandates expected in early 2024. With improved capabilities for Software Supply Chain Security (SSCS), Fortress' newest offering helps public sector supply chains become more secure and resilient.

Key Points: 
  • ORLANDO, Fla., Oct. 23, 2023 /PRNewswire/ -- Today, Fortress Information Security released new software attestation capabilities to enable government agencies and government contractors to meet stringent software security mandates expected in early 2024.
  • With improved capabilities for Software Supply Chain Security (SSCS), Fortress' newest offering helps public sector supply chains become more secure and resilient.
  • New federal mandates require all federal vendors and contractors to complete an attestation form for software products they sell to federal agencies.
  • Attestations assure that software used by government agencies is securely developed according to the National Institute of Science and Technology's (NIST) Secure Software Development Framework (SSDF).

OpenSSF Welcomes New Members in Support of Securing Open Source Software

Retrieved on: 
Monday, September 18, 2023

BILBAO, Spain, Sept. 18, 2023 /PRNewswire/ -- The Open Source Security Foundation (OpenSSF), a cross-industry initiative of the Linux Foundation that focuses on sustainably securing open source software (OSS), welcomes six new members from leading technology firms.

Key Points: 
  • BILBAO, Spain, Sept. 18, 2023 /PRNewswire/ -- The Open Source Security Foundation (OpenSSF), a cross-industry initiative of the Linux Foundation that focuses on sustainably securing open source software (OSS), welcomes six new members from leading technology firms.
  • Technical communities continue to prioritize investment in open source security and recognize the role of supporting and sustaining open source communities in maintaining a healthy, vibrant, and secure open source ecosystem.
  • OpenSSF Day is an exciting opportunity to learn more about ongoing efforts to secure the open source software ecosystem.
  • The US Cybersecurity and Infrastructure Security Agency (CISA) also recently released an Open Source Software Security Roadmap with which the OpenSSF is uniquely positioned to assist toward securing open source software for the public good.

Opsera Salesforce DevOps Platform Enables Secure and Resilient Salesforce Releases

Retrieved on: 
Thursday, February 16, 2023

SAN FRANCISCO, Feb. 16, 2023 /PRNewswire/ -- Opsera, the Continuous Orchestration platform for DevOps, today announced the latest enhancements to its Salesforce DevOps platform that ensures the highest security and compliance standards are met for Salesforce releases through source-driven development and native integrations with security tools.

Key Points: 
  • SAN FRANCISCO, Feb. 16, 2023 /PRNewswire/ -- Opsera, the Continuous Orchestration platform for DevOps, today announced the latest enhancements to its Salesforce DevOps platform that ensures the highest security and compliance standards are met for Salesforce releases through source-driven development and native integrations with security tools.
  • Try Opsera's Salesforce DevOps Platform for free: go.opsera.io/salesforcedevops
    Securing and maintaining Salesforce releases is a major challenge for engineering teams.
  • Opsera enables secure Salesforce releases through:
    Source-Driven Development: Opsera's source-driven development allows developers to continuously deliver changes to the Salesforce platform in an efficient and controlled manner.
  • "With Opsera's Salesforce DevOps platform, Salesforce developers, architects and admins are enabled to improve security, agility and productivity significantly.

DH2i Marks 2022 As Another Year of Record Product Innovation, Strategic Partnership Development and Industry Acclaim

Retrieved on: 
Wednesday, January 18, 2023

FORT COLLINS, Colo., Jan. 18, 2023 /PRNewswire-PRWeb/ -- DH2i®, the world's leading provider of always-secure and always-on IT infrastructure solutions, today announced that 2022 marked another year of record product innovation, strategic partnership development and industry acclaim. Building on an already enviable track-record of delivering the most advanced and real-world proven smart high availability (HA) clustering and software-defined perimeter (SDP) solutions for Windows, Linux and containers, DH2i announced the following last year:

Key Points: 
  • Software AG Government Solutions is offering the combined solution to its U.S. federal, state, and local government customers, as well as its aerospace and defense industry clients.
  • DH2i Won 2022 IoT Evolution Industrial IoT Product of the Year Award - DxOdyssey for IoT, DH2i's edge-optimized SDP solution, received a 2022 IoT Evolution Industrial IoT Product of the Year Award from IoT Evolution World.
  • CRN Honored DH2i with 5-Star Rating in 2022 Partner Program Guide - DH2i was celebrated by CRN, a brand of The Channel Company, with a prestigious 5-star rating in its 2022 Partner Program Guide.
  • Tweet this: @DH2i Marks 2022 As Another Year of Record Product Innovation, Strategic Partnership Development and Industry Acclaim https://dh2i.com/blog/ @dcboxley #DxEnterprise #DxOdyssey #HighAvailability #ZeroTrust

Aqua Security Offers Only Enterprise-Grade Software Supply Chain Solution to Meet Executive Order 14028

Retrieved on: 
Wednesday, November 9, 2022

BOSTON, Nov. 09, 2022 (GLOBE NEWSWIRE) -- Aqua Security , the leading pure-play cloud native security provider, today announced that it is the only enterprise-grade vendor providing software supply chain security attestation to meet the requirements of Executive Order (EO) 14028 .

Key Points: 
  • BOSTON, Nov. 09, 2022 (GLOBE NEWSWIRE) -- Aqua Security , the leading pure-play cloud native security provider, today announced that it is the only enterprise-grade vendor providing software supply chain security attestation to meet the requirements of Executive Order (EO) 14028 .
  • The Executive Order on Improving the Nations Cybersecurity lists out all the software supply chain requirements that third-party software companies must meet or exceed to enhance the nations cybersecurity and protect the nation from malicious cyber actors.
  • Deadlines are as follows:
    Aqua Securitys Software Supply Chain Security is the only end-to-end solution that ensures protection across the entire software development lifecycle and will enable software providers to meet and attest to the EO requirements.
  • Aqua is making it easy for software vendors to not only meet compliance requirements but also have the confidence that they can prevent software supply chain attacks, said Davidoff.

DLT Solutions and TD SYNNEX Public Sector Entities Re-brand as TD SYNNEX Public Sector

Retrieved on: 
Wednesday, October 5, 2022

HERNDON, Va., Oct. 5, 2022 /PRNewswire/ -- TD SYNNEX Public Sector, part of TD SYNNEX (NYSE: SNX), announced its launch as a unified, purpose-driven brand that combines the strengths and decades of dedicated service to the U.S. public sector of three successful organizations – DLT Solutions, Tech Data Public Sector Solutions and SYNNEX GOVSolv.

Key Points: 
  • DLT Solutions and TD SYNNEX U.S. public sector entities re-brand as TD SYNNEX Public Sector.
  • "Our people are industry-leading practitioners with decades of experience serving the U.S. public sector," said Eddie Franklin, senior vice president of public sector sales, TD SYNNEX Public Sector.
  • @DLTSolutions and @TDSYNNEX U.S. #publicsector entities re-brand as TD SYNNEX Public Sector.The unprecedented combination of #IT talent, resources, capabilities and global reach positions TD SYNNEX Public Sector as the catalyst to connect the entire U.S. public sector.
  • TD SYNNEX, the TD SYNNEX Logo, and all other TD SYNNEX company, product and services names and slogans are trademarks of TD SYNNEX Corporation.

Cybeats Applauds New White House Memorandum Regarding Securing the Software Supply Chain

Retrieved on: 
Thursday, September 22, 2022

"Cybeats applauds this memorandum and we will continue to put our efforts towards supporting the development of best practices for software supply chain intelligence and security."

Key Points: 
  • "Cybeats applauds this memorandum and we will continue to put our efforts towards supporting the development of best practices for software supply chain intelligence and security."
  • SBOM Studio provides organizations with the capability to efficiently manage SBOM (Software Bill of Materials) and software vulnerabilities, and provides proactive mitigation of risks to their software supply chain.
  • Cybeats is a leading software supply chain intelligence technology provider, helping organizations manage risk, meet compliance and secure software from procurement, development through operation.
  • Our platform provides customers with deep visibility and universal transparency into their software supply chain, as a result enables them to increase operational efficiencies and revenue.

Legit Security Announces Support For New Compliance Frameworks To Increase Software Supply Chain Security And Integrity

Retrieved on: 
Wednesday, August 10, 2022

TEL AVIV, Israel, Aug. 10, 2022 (GLOBE NEWSWIRE) -- Legit Security , a cyber security company with an enterprise platform to secure an organizations software supply chain, today announced new platform capabilities for real-time risk scoring, drift monitoring, and support for additional compliance frameworks including Supply-Chain Levels for Software Artifacts (SLSA) .

Key Points: 
  • TEL AVIV, Israel, Aug. 10, 2022 (GLOBE NEWSWIRE) -- Legit Security , a cyber security company with an enterprise platform to secure an organizations software supply chain, today announced new platform capabilities for real-time risk scoring, drift monitoring, and support for additional compliance frameworks including Supply-Chain Levels for Software Artifacts (SLSA) .
  • The platforms expanded support of industry best practice frameworks include SLSA, software bill of materials ( SBOM ) standards, as well as the ability for organizations to implement their own custom governance frameworks, enabling enterprises to assure software supply chain security and integrity.
  • Our platform also supports the SLSA compliance framework because of its dedication to cross-industry collaboration to help improve security and supply chain integrity, along with its alignment with NISTs latest Secure Software Development Framework.
  • Legit Security protects software supply chains from attack by automatically discovering and securing the pipelines, infrastructure, code and people so that businesses can stay safe while releasing software fast.

COALFIRE LAUNCHES APPLICATION SECURITY SOLUTIONS POWERED BY THREADFIX PLATFORM

Retrieved on: 
Tuesday, March 1, 2022

WESTMINSTER, Colo., March 1, 2022 /PRNewswire/ -- Global cybersecurity pioneer, Coalfire, today introduced one of the most comprehensive enterprise AppSec solutions , and a proven path to Secure Software Development Lifecycle (SSDLC) program maturity with 40% efficiency gains over traditional methodologies.

Key Points: 
  • WESTMINSTER, Colo., March 1, 2022 /PRNewswire/ -- Global cybersecurity pioneer, Coalfire, today introduced one of the most comprehensive enterprise AppSec solutions , and a proven path to Secure Software Development Lifecycle (SSDLC) program maturity with 40% efficiency gains over traditional methodologies.
  • The suite of services, coupled with the industry leading ThreadFix application security orchestration and correlation or application posture management platform, delivers clients the ability to operationalize AppSec programs with unprecedented productivity, simplicity, and scale.
  • Designed to enable today's enterprise digital risk leaders, the Coalfire AppSec solutions empower strategic planning, testing regimens and code risk management to come together in managing vulnerabilities for continuous visibility and action prioritized remediation.
  • The Coalfire AppSec suite of services include: