April 13, 2024

Software supply chain attacks are on the rise — are you at risk?

Graham Cluley Safety Information is sponsored this week by the oldsters at Sysdig. Due to the nice staff there for his or her assist!

Assaults concentrating on the software program provide chain are on the rise and splashed throughout the information. SolarWinds raised consciousness in regards to the danger. More moderen occasions, just like the Federal Civilian Government Department (FCEB) company breach, amplified the priority.

Software program provide chain danger isn’t going wherever. As growth groups more and more depend on open supply software program and third-party code, the chance of publicity to each recognized and unknown safety vulnerabilities considerably will increase.

The Sysdig 2023 Cloud-Native Safety and Utilization report discovered that 87% of container pictures have excessive or important vulnerabilities, which highlights the significance of runtime safety. There’s quite a lot of speak about shift left, however threats come up in manufacturing. Then what?

Completely different assault vectors exist, and points like ransomware, cryptomining, or different compromises aren’t prevented by scanning code or pictures. To not point out that container vulnerabilities are found each day. Your container, which appears protected one second, can turn out to be a possible sufferer of a newly disclosed exploit. Shift-left alone is just not sufficient.

The purpose of each cybersecurity program ought to be full lifecycle safety.

Taking a look at real-world knowledge, the sixth annual Sysdig Cloud-Native Safety and Utilization report reveals how international firms of all sizes and industries are utilizing and securing cloud and container environments. This 12 months, the report highlighted key CISO priorities, together with software program provide chain danger, zero belief, and price administration. Learn the important thing takeaways from Sysdig’s report.

Download Sysdig report

Obtain the complete Cloud-Native Safety and Utilization Report back to uncover the newest insights like:

  • How firms can save as much as $10M in cloud prices
  • 87% of pictures embody a excessive or important vulnerability
  • 90% of accounts have extreme permissions

Be taught Extra ➔

About Sysdig

Sysdig delivers cloud and container safety so you may cease assaults with no wasted time. Detect threats in real-time utilizing ML, curated guidelines and Sysdig Menace Analysis Insurance policies. Prioritize vulnerabilities based mostly on in-use danger publicity and repair quick with context. Acquire agentless visibility mixed with runtime safety powered by eBPF and Falco.

In case you’re concerned about sponsoring my web site for per week, and reaching an IT-savvy viewers that cares about laptop safety, yow will discover extra info right here.