Read about application security, DevSecOps, open source license compliance and audit
WhiteSource security analyzed the possible impact of a newly discovered RubyGems vulnerability that uses cache poisoning to implement an unauthorized takeover of new gem versions.
The WhiteSource security team blocked a malicious npm package that uses a novel approach to disguise and execution.
Using data from Diffend, the WhiteSource research team conducted an impact analysis of a recent critical CVE disclosed for RubyGems.
Learn about the NIST C-SCRM program, its approach to supply chain security, and 4 critical best practices NIST recommends to secure your digital supply chains.
Discover why cybersecurity will be a hot topic at KubeCon 2022. Learn why standard vulnerability scoring is no longer sufficient, and find out why priority scoring is the future of vulnerability management.
Learn how vulnerability assessment tools work, key features and capabilities, and discover five great tools that can help you scan and remediate vulnerabilities.
Daniel Elkabes, lead security researcher at WhiteSource sat down with CyberNews to discuss security best practices for addressing threats.
Learn about supply chain security, supply chain attacks, and how to protect your organization against this severe threat.
WhiteSource security has uncovered malicious packages using hex encoding and delayed execution
Volunteer delegation and charitable donations made to assist and aid those fleeing the crisis in the Ukraine