Third Party Libraries: the Swiss Cheese of App Security

Great post by Waratek about minimizing open source risks, “While using third-party or open source libraries is a great time saver, it also exposes organizations to many thousands of lines of software that was not authored internally and may contain vulnerabilities”

Waratek director of client security solutions, Prateep Bandharangshi, explains how to minimize the risk of another Heartbleed.

Third party software libraries represent one of biggest, and possibly most overlooked, threats to enterprise security. That’s because open source components are regularly used by enterprise application developers to speed development and avoid “re-inventing the wheel.” Third party code makes up between 30 percent and 90% of typical applications, according to industry estimates. While using third-party or open source libraries is a great time saver, it also exposes organizations to many… 

Read More