ZDNet

Software development is still ignoring security. That needs to change fast

If one event demonstrated how vulnerable organisations and infrastructure around the world are to software vulnerabilities, it was Log4j. The critical zero-day vulnerability in the Java logging ...
CSO Online

The new paradigm for raising up secure software engineers

The new challenge for CISOs in the age of AI developers is securing code. But what does developer security awareness even ...
FedScoop

Why the US government will require software vendors to certify the security of their products

New guidance issued by the White House on Wednesday gives agencies a timeline for beginning to obtain self-attestations from software developers before using their products, rather than relying on ...

Why LLMs are plateauing – and what that means for software security

Despite rapid generation of functional code, LLMs are introducing critical, compounding security flaws, posing serious risks for developers.
Computer Weekly

Secure software: Third-party suppliers your first-party risk

In 1965, Ralph Nader’s groundbreaking book Unsafe at Any Speed exposed how car manufacturers prioritised style, performance, and profit over the safety of drivers and passengers. His narrative spurred ...
Forbes

Enable Next-Gen Security For Your Software With Secure SDLC

Customer satisfaction is key to product success. That’s why development teams are often tempted to prioritize application performance and functionality, hoping to introduce necessary cybersecurity ...
CSOonline

Roundup: Global software supply chain security guidance and regulations

Supply chain security continues to receive critical focus in the realm of cybersecurity, and with good reason: incidents such as SolarWinds, Log4j, Microsoft, and Okta software supply chain attacks ...
Dark Reading

Lock Down the Software Supply Chain With 'Secure by Design'

Software that prioritizes security at its most foundational level means designing it with customer security as a key goal rather than a tacked-on feature. And that concept — secure by design — is ...
Bleeping Computer

Why a secure software development life cycle is critical for manufacturers

For all the scary talk about cyberattacks from vendors and industry experts, relatively few attacks are actually devastating. But the Jaguar Land Rover (JLR) attack was. The JLR breach wasn’t some ...
Computer Weekly

Secure software procurement in 2025: A call for accountability

The software security landscape is at an interesting juncture. As Jen Easterly, the former director of the Cybersecurity and Infrastructure Security Agency (CISA), pointed out, there is a lesson to be ...
Tom's Hardware on MSN

Microsoft is refreshing Secure Boot certificates to plug security holes before they happen — if you bought a PC last year, you should be set

Microsoft is refreshing Secure Boot certificates for Windows PCs. If you bought one in the past year, you should be set, but others should be sure to keep up with Windows 11 updates.
SecurityWeek

Microsoft to Refresh Windows Secure Boot Certificates in June 2026

Microsoft will roll out new Secure Boot certificates for Windows users starting June, as the old certificates will expire.