TMCnet

Chainguard Launches Commercial Builds with Industry Leaders, Setting a New Standard for Verifiable, Zero-Vulnerability Software

Azul, Chainloop, Elastic, Expanso, F5 NGINX, Grafana Labs, Mattermost, Nirmata, Percona, Smallstep, and Tiger Data trust Chainguard for verifiably secure software with zero known ...
Computer Weekly

Secure software: Third-party suppliers your first-party risk

In 1965, Ralph Nader’s groundbreaking book Unsafe at Any Speed exposed how car manufacturers prioritised style, performance, and profit over the safety of drivers and passengers. His narrative spurred ...
ZDNet

Software development is still ignoring security. That needs to change fast

If one event demonstrated how vulnerable organisations and infrastructure around the world are to software vulnerabilities, it was Log4j. The critical zero-day vulnerability in the Java logging ...

SafeHill Acquires Arcane Security to Secure the Rise of AI-Driven (‘Vibe Code’) Software Development

The Arcane Security acquisition strengthens SafeHill SecureIQ™ with AI-driven code analysis and continuous application ...
FedScoop

Why the US government will require software vendors to certify the security of their products

New guidance issued by the White House on Wednesday gives agencies a timeline for beginning to obtain self-attestations from software developers before using their products, rather than relying on ...
Forbes

Enable Next-Gen Security For Your Software With Secure SDLC

Customer satisfaction is key to product success. That’s why development teams are often tempted to prioritize application performance and functionality, hoping to introduce necessary cybersecurity ...
JD Supra

OMB Rescinds Secure Software Development Mandate in Favor of a Risk-Based Approach

On January 23, 2026, the Office of Management and Budget (OMB) reversed some relatively new requirements for secure software development that had been imposed on federal contractors. This move is ...
Nextgov

Few software developers employ secure by design training, research finds

The analysis, conducted by Secure Code Warrior, is supported by former White House cybersecurity officials Kemba Walden and Chris Inglis. Under 4% of software developers across the globe are ...

AI Agent Security Is Repeating The Industry's Oldest Mistake

The tech industry has spent 30 years proving that software-first security is fast and lightweight but ultimately insufficient.
Bleeping Computer

Why a secure software development life cycle is critical for manufacturers

For all the scary talk about cyberattacks from vendors and industry experts, relatively few attacks are actually devastating. But the Jaguar Land Rover (JLR) attack was. The JLR breach wasn’t some ...
Dark Reading

New UK Security Guidelines Aim to Reshape Software Development

Software security may finally be getting the attention it deserves as more countries institute necessary guidelines. But with threats increasing against the software supply chains, it is too soon to ...
WeLiveSecurity

Can open-source software be secure?

There are – and will always be – vulnerabilities in software. Just like there is no perfect security, there is no perfect codebase. That begs the question: What is the best way to fix software ...