Software supply chains are becoming a worrying weak link for firms of all sizes

2 days ago 3

All companies that use open source code in their software are at risk of supply-chain attacks, regardless of their size or industry they’re in, new research has warned.

A report from cybersecurity experts Checkmarx claims despite the grim outlook, things are looking up for application security (AppSec) leaders.

To draft its 2024 State of Software Supply Chain Security report, Checkmarx surveyed 900 AppSec professionals in the US, Europe, and Asia-Pacific - but all of them - 100% - claimed to have experienced a software supply chain attack at some time in the past.

Understanding new risks

While this definitely isn’t good news, the trend in the last two years shows promise. While almost two-thirds (63%) reported falling victim within the past two years, less than a fifth (18%) suffered such an attack within the past year. 

The news is worrisome, and AppSec pros are aware of it. Three-quarters (75%) said they were either very concerned (39%) or concerned (36%) about the risks. However, they’re not sitting idly. While in more than half (56%), organizational applications contain open-source packages, 57% said software supply chain security was a “top”, or “significant” area of focus. 

More than half (54%) are planning to use, or are currently investigating, a potential solution, while 50% are requesting software bills of materials from their vendors. 

For Amit Daniel, Chief Marketing Officer at Checkmarx, it’s critical for CISOs and security leaders to make it easier for developers to understand the new risks and secure their entire software supply chain.

“‘Malicious’ is much more than vulnerable. We have seen more attacks on the open source ecosystem in the last two years than ever before with over 385,000 malicious packages detected to date by our own Checkmarx security research team” Daniel said. “Software supply chain security has become an active target of government regulatory and cybersecurity agencies and is top of mind for over half of global enterprises we surveyed.”

More from TechRadar Pro

Read Entire Article
  1. Homepage
  2. Technology
  3. Software supply chains are becoming a worrying weak link for firms of all sizes

Related

Some of the newest Intel processors could be hit by dangerous new security flaw — Raptor Lake and Alder Lake both affected

Some of the newest Intel processors could be hit by dangerou...

1 hour ago 0
Next-gen contactless payments are coming to iPhones and Android –here's what's new

Next-gen contactless payments are coming to iPhones and Andr...

1 hour ago 0
Popular VPN ditches credential logins for Android

Popular VPN ditches credential logins for Android

1 hour ago 0
RIGHT SIDEBAR TOP AD

Trending

1. Indiana Fever
2. Costa Rica
3. Costa Rica vs Paraguay
4. Fever vs Aces
5. Kyle Anderson
6. Brasil Colombia
7. Keke Jabbar
8. Jamaica
9. Rudy Giuliani
10. Xbox

Popular

Warzone Mobile release date, trailers and latest news

Warzone Mobile release date, trailers and latest news

3 months ago 189
Everything leaving Max in March 2024

Everything leaving Max in March 2024

3 months ago 183
Google Pixel Watch 3: latest news, rumors, and what we want to see

Google Pixel Watch 3: latest news, rumors, and what we want ...

3 months ago 182
Snapdragon X could finally deliver Windows 11 ARM laptops that can rival MacBooks

Snapdragon X could finally deliver Windows 11 ARM laptops th...

3 months ago 166
How Netflix’s The Program Docuseries Exposes the Troubled Teen Industry

How Netflix’s The Program Docuseries Exposes the Troubled Te...

3 months ago 163
RIGHT SIDEBAR BOTTOM AD
English (US) English (US)
About Us · Contact Us ·

© Search001 2024. All rights are reserved