Security News > 2022 > January > Proactive software supply chain security becoming critical as threats rise
The report compiles responses from 428 leaders and executives in IT, security and development roles to identify the latest trends on how organizations are adapting to new security challenges of the software supply chain.
Managing software supply chain security a significant or top focus in 2022.
In response to rising software supply chain concerns, 54% of respondents are making security of the software supply chain a significant or top focus in 2022.
"The software security landscape is changing rapidly and it's important that enterprise leaders understand how critical proactively security is becoming," said Josh Bressers, VP of security at Anchore.
"The data shows us that organizations are focused on both open source and commercial software as part of their supply chain security efforts. The most important action now is to generate and store SBOMs for the software they build and use. This critical foundation provides visibility into the software components they depend on and monitor for the security of applications post-deployment. With an SBOM, organizations will be ready to respond quickly to the next zero-day vulnerability."
Security of open source software is the top focus for supply chain security efforts with 46% ranking it as a "Top 3" priority.
News URL
https://www.helpnetsecurity.com/2022/01/26/managing-software-supply-chain/
Related news
- AWS security essentials for managing compliance, data protection, and threat detection (source)
- HPE Issues Critical Security Patches for Aruba Access Point Vulnerabilities (source)
- Major security audit of critical FreeBSD components now available (source)
- Privileged Accounts, Hidden Threats: Why Privileged Access Security Must Be a Top Priority (source)
- Update your OpenWrt router! Security issue made supply chain attack possible (source)
- Ivanti Issues Critical Security Updates for CSA and Connect Secure Vulnerabilities (source)
- MUT-1244 targeting security researchers, red teamers, and threat actors (source)
- Deloitte says cyberattack on Rhode Island benefits portal carries 'major security threat' (source)
- Critical security hole in Apache Struts under exploit (source)
- Are threat feeds masking your biggest security blind spot? (source)