https://hellios.com/sustainability-esg
Transform your supply chain with our platform, ensuring visibility, engaging suppliers, & achieving ESG goals while reducing risks and enhancing reporting.
supply chain security
https://www.helpnetsecurity.com/2018/07/24/securing-the-supply-chain/?utm_source=mosaicsecurity
CrowdStrike announced the results of its global supply chain survey, Securing the Supply Chain, produced by research firm Vanson Bourne. The study
supply chainbest practicessecuringorganizationsneed
https://hellios.com/cpo
Gain confidence in procurement with reliable data. Strengthen your supply chain, ensure compliance, and make informed decisions for a resilient future.
supply chain security
https://www.helpnetsecurity.com/2019/04/09/framing-supply-chain-attacks/
The increase in the demand for innovative software has effectively reshaped the software development industry itself. Today, speed and agility are
supply chain attackshelp net securityframing
https://www.tracelink.com/products/product-orchestration/country-compliance/us-compliance
Our U.S. Drug Supply Chain Security Act (DSCSA) product helps companies achieve and maintain compliance with U.S. Drug Supply Chain Security Act regulations.
drug supply chainsecurityactdscsatracelink
https://snyk.io/jp/blog/solarwinds-orion-security-breach-a-shift-in-the-software-supply-chain-paradigm/
in this article, we'll walk through the lessons learned from SolarWinds Orion security breach.
security breachsolarwindsorionshiftsoftware
https://www.industryweek.com/leadership/companies-executives/article/21952047/supply-chain-security-is-net-plus-for-manufacturers
The benefits of investing in supply-chain security measures "far outweigh" the costs, claims a Stanford University study released by the Manufacturing...
supply chain securitynetplusmanufacturersindustryweek
https://zenodo.org/records/4734576
Internet of Things (IoT) technology is a big network of machines, objects, or people interacting together to achieve a common goal. IoT domain has several...
security chainiot securetoolapplications
https://jfrog.com/ja/usecase/fintech-company-streamlines-software-supply-chain-management-security/
This leading financial services technology company significantly strengthened its end-to-end software supply chain security with JFrog Advanced Security.
software supply chainenhanced securityfintechcompanystreamlines
https://www.linuxfoundation.org/press/press-release/the-openssf-and-the-linux-foundation-address-software-supply-chain-security-challenges-at-white-house-summit
WASHINGTON (January 13, 2022) Today marks an important moment in the Linux Foundation’s history of engagement with public sector organizations. The White...
software supply chainlinux foundationopenssfaddress
https://devopsdozen.com/awards/best-supply-chain-security-solution/
Software supply chain security refers to the measures taken to protect the integrity and security of software throughout its entire development and delivery...
supply chain securitydevops dozenbestsolution
https://info.legitsecurity.com/what-you-need-to-know-about-the-software-supply-chain-security-regulatory-landscape-and-sboms
Learn the most important developments in regulations for software supply chain security regarding EO 14028, SSDF, SBOM, PCI/DSS updates, and SLSA.
software supply chainneedknow
https://amcham.ba/blog-post/14/cyber-security-lesson-supply-chain-attacks
Are you 100% safe? Do you have endpoint protection in place, firewalls defending the perimeter, and phishing filters on incoming...
supply chain attackscyber securitylessonamchambih
https://financialit.net/news/risk-management/pwc-and-reversinglabs-form-strategic-alliance-bring-software-supply-chain
ReversingLabs, the market leader in software supply chain security, today announced it has teamed up with PricewaterhouseCoopers LLP (a limited liability...
strategic alliancepwcformbringsoftware
https://www.redhat.com/en/blog/sigstore-open-answer-software-supply-chain-trust-and-security
Sigstore is an open source project originally conceived and prototyped at Red Hat and now under the auspices of the Linux Foundation with backing from Red Hat,...
software supply chainsigstoreopenanswertrust
https://www.wtkr.com/news/hospital-chain-with-ties-to-hampton-roads-continues-to-deal-with-a-major-it-security-incident
A major hospital chain says they are working with their security partners to restore their Information Technology operations as quickly as possible after what...
hospital chainlocaltiescontinuesdeal
https://www.abus.com/usa/Products/Chains-and-Cables/Maximum-Security-Chain
ABUS security chains are an excellent choice for safeguarding valuable items that cannot be secured with a standard lock. These chains are ...
maximum securitychainscablesproductsabus
https://www.veracode.com/blog/devsecops-framework-software-supply-chain-security/
Learn how to align your DevSecOps framework with software supply chain security. Discover steps for managing open-source risk and securing code.
software supply chainaligndevsecopsframeworksecurity
https://www.bsigroup.com/en-HK/our-expertise/supply-chain/
Explore BSI's supply chain services, promoting transparency, efficiency, and resilience in supply chain management.
supply chain securityresiliencebsi
https://www.zscaler.com/mx/products-and-solutions/supply-chain-security
Zscaler SaaS Supply Chain Security can prevent unknown third party apps from connecting and exfiltrating data from platforms like Google Cloud or Microsoft 365.
software supply chainsecuritysaaszscaler
https://dev.to/privlabs/why-i-built-an-offline-pre-audit-platform-for-supply-chain-security-before-scanning-or-pentesting-1jln
In many security engagements, I kept seeing the same pattern. Teams would start... Tagged with security, infosec, opensource, cicd.
builtofflinepreauditplatform
https://sourcegraph.com/blog/real-weakest-link-in-software-supply-chain-security
When a critical security vulnerability is identified, your response time is everything. There are probably shortcomings in your response process itself that...
software supply chainrealweakestsecurity
https://www.helpnetsecurity.com/2010/03/17/fake-pin-pad-units-in-us-chain-store/
As soon as we got used to the idea that we have to be very careful when using ATMs because they might be "skimming" devices attached onto them, we have to
pin padchain storefakeunitsus
https://www.reversinglabs.com/gartner-market-guide-to-software-supply-chain-security
See what product and application security teams need to know to protect against software supply chain compromises.
software supply chainmarket guidesecurity
https://www.hanwha.com/newsroom/news/feature-stories/securing-tomorrows-energy-mix.do
Hanwha’s integrated LNG value chain reinforces global energy security and drives a more resilient, reliable energy future.
global lngenergy securityhanwhabuildschain
https://www.helpnetsecurity.com/2022/09/22/wolfi-linux-undistro-software-supply-chain-security/
Wolfi is a community Linux distribution that combines the best aspects of existing container base images with default security measures.
security measureswolfilinuxsoftware
https://www.ansi.org/news/standards-news/all-news/2022/09/9-28-22-registration-open-october-26-28-ansi-workshop-on-global-supply-chain
The American National Standards Institute (ANSI) has announced the opening of registration for its October 26-28 workshop on global supply chain security for...
registration openglobal supplyoctoberansiworkshop
https://www.ey.com/en_pl/insights/law/nis2-supply-chain-security
One of the most important elements of the NIS2 Directive are standards for assessing supply chain security. Will the practical implementation of those...
supply chain securityaffectapproachey
https://beincrypto.com/crypto-security-ai-custody-identity/
Nov 28, 2025 - The crypto industry is building a new financial fortress. Discover the layered defense system: AI, programmable custody, and the future of on-chain identity.
crypto securitynew eraaitieredcustody
https://www.theepochtimes.com/us/trump-orders-task-forces-to-protect-food-supply-chain-competition-security-5954901
The security task forces would work toward addressing risks from anti-competitive behavior and price fixing.
food supply chaintask forcestrumpordersprotect
https://portswigger.net/web-security/deserialization/exploiting/lab-deserialization-developing-a-custom-gadget-chain-for-java-deserialization
This lab uses a serialization-based session mechanism. If you can construct a suitable gadget chain, you can exploit this lab's insecure deserialization to ...
labdevelopingcustomgadgetchain
https://www.shopify.com/ca/blog/supply-chain-security
Supply chain security risks manifest in many ways, each presenting unique challenges. Learn how to anticipate them.
supply chain securityriskssecure
https://www.crowdstrike.com/en-us/blog/how-agentic-tool-chain-attacks-threaten-ai-agent-security/
Learn about three critical agentic tool chain attacks, how they exploit AI agents, and how you can mitigate risk.
ai agent securitytool chainagenticattacksthreaten
https://www.reversinglabs.com/products/software-supply-chain-security
Spectra Assure for software supply chain security provides enterprise software developers with early and actionable feedback on risks like malware, tampering,...
software supply chainsecurityspectraassure
https://www.systechone.com/solutions/brand-protection/diversion-detection-product-safety/
Jul 18, 2025 - Diversion is a top challenge to product quality and revenue protection. Detect and stop gray market activity with real-time supply chain security.
supply chain securitydiversiondetectionsystech
https://aws.amazon.com/fr/blogs/opensource/supply-chain-security-on-amazon-elastic-kubernetes-service-amazon-eks-using-aws-key-management-service-aws-kms-kyverno-and-cosign/
Learn how to integrate open source Cosign with AWS KMS and ensure supply chain security is maintained using open source Kyverno.
supply chain securitykubernetes serviceamazonelasticeks
https://aws.amazon.com/blogs/opensource/aws-investing-an-additional-10-million-in-open-source-supply-chain-security/
Security is our top priority at AWS. As a result, we are committed to contributing to the quality and safety of open source software. We see great value in...
open sourceawsinvestingadditionalmillion
https://info.legitsecurity.com/3-software-supply-chain-security-pitfalls-and-how-to-avoid-them
Webinar | Join Liav Caspi and John Tierney from Legit Security as they discuss three software supply chain pitfalls and how to avoid them. | ISMG
software supply chainsecuritypitfallsavoid
https://www.trendmicro.com/vinfo/us/security/news/virtualization-and-cloud/enhancing-software-supply-chain-security-navigating-slsa-standards-and-the-mitre-att-and-ck-framework
Attackers abuse different supply-chain scenarios to indirectly compromise organizations and applications. We delve into how a software pipeline works, where...
software supply chainenhancingsecuritynavigatingslsa
https://training.linuxfoundation.org/express-learning/automating-supply-chain-security-sboms-and-signatures-lfel1007/
Jan 2, 2025 - Dive into the concept of automating security efforts for consuming & delivering software with this FREE express learning course.
supply chain securitylinux foundationautomatingeducation
https://tiaonline.org/what-we-do/scs-9001-supply-chain-security-standard/
Apr 23, 2025 - SECURING THE ICT SUPPLYCHAIN WITH SCS 9001 Introducing SCS 9001TM – the first-ever Supply Chain Security Management System that tackles the growing...
supply chain securityscscyberstandardtia
https://www.webwire.com/ViewPressRel.asp?aId=224393
2017 saw a worrying increase in ransomware and other cyberattacks targeting the supply chain, with the business and professional services sector receiving a...
supply chainbusiness securitynewweak
https://freebeacon.com/national-security/cheney-chinese-control-of-supply-chain-is-national-security-threat/
Rep. Liz Cheney (R., Wyo.) called Chinese control of the pharmaceutical supply chain a national security threat and said the United State must use its military...
supply chainnational securitycheneychinesecontrol
https://www.freepik.com/free-vector/security-concept-illustration-people-holding-chain_3226083.htm
Download this free vector of Security concept illustration of people holding a chain and explore millions of professional vectors on Freepik.
security conceptfree vectorillustrationpeopleholding
https://snyk.io/blog/developer-first-supply-chain-security/
Developer-first supply chain security aims to minimize the risk of potential breaches, streamline the development workflow, foster collaboration, and instill a...
supply chain securitydeveloperfirstsnyk
https://www.thoughtworks.com/en-in/insights/articles/application-security-five-important-lessons-supply-chain-attacks
The recent wave of supply chain attacks mean business leaders need to pay close attention to security practices and processes.
application securityfiveimportantlessonsrecent
https://opensource.net/risks-solutions-shadow-software-supply-chain/
Mar 3, 2025 - Shadow software supply chains, with unclear licenses and risky code, are almost undetectable from other contributions.
software supply chainbalancingspeedvssecurity
https://www.blackduck.com/glossary/what-is-software-supply-chain-security.html?utm_source=www.cramhacks.com&utm_medium=referral&utm_campaign=cramhacks-newsletter-6-is-coffee-supply-chain
Software supply chain security involves safeguarding software components, activities and practices during creation and deployment, including third-party code...
software supply chainsecurity
https://www.itweb.co.za/article/africa-cannot-be-the-weak-link-in-the-security-value-chain/dgp45qa65pYvX9l8
AU cyber security expert details challenges facing the continent in protecting people and resources.
africacannotweaksecurityvalue
https://info.legitsecurity.com/fortune-500-ciso-insights-our-fast-track-to-software-supply-chain-security
Webinar | Join Ricardo Lafosse, CISO of Kraft Heinz for a conversation on how his team adopted a modern software supply chain security approach. | ISSA
ciso insightsfast trackfortunesoftwaresupply
https://www.oracle.com/bz/corporate/security-practices/corporate/supply-chain/
Oracle has policies and procedures designed to ensure the safety of its supply chain. These policies and procedures explain how Oracle selects third-party...
supply chain securityassuranceoraclebelize
https://pecb.com/en/education-and-certification-for-individuals/iso-28000
Aug 17, 2025 - ISO 22301 Business Continuity Management System — Training Courses What Is ISO 22301? ISO 22301 sets out requirements for business continuity management...
supply chain securitymanagement systemtraining coursesisopecb
https://www.bsigroup.com/en-US/industries/transport-and-mobility/automotive/
Discover BSI Group's automotive capabilities, including certifications, advisory, and training for quality and security in the automotive industry.
automotive supply chainsecurityregulationsstandardsbsi
https://scribesecurity.com/
Sep 30, 2025 - Scribe Security provides end-to-end software supply chain security solutions through an innovative proprietary technology
software supply chainscribesecurityend
https://industrialcyber.co/category/supply-chain-security/
Explore the latest articles and insights on Supply Chain Security from Industrial Cyber. Stay updated on trends, analysis, and news related to Supply Chain...
supply chain securityindustrialcyber
https://firecompass.com/supply-chain-and-3rd-party-risk-management-old/
Jul 29, 2024 - With FireCompass Gain Instant Visibility Of Shadow Risks And Build Assets Inventory To Implement Security Controls OnSubsidiary Assets Controls By Conducting...
cyber securitysupply chainrisk managementpartybackup
https://thehackernews.com/2024/01/three-ways-to-supercharge-your-software.html?m=1
Don't miss our tips on using Software Composition Analysis tools to manage dependencies and vulnerabilities effectively.
software supply chainthree wayssuperchargesecurity
https://www.cisecurity.org/insights/white-papers/cis-software-supply-chain-security-guide
The CIS Software Supply Chain Guide can assist individuals build and deploy software updates through automated means of DevOps pipelines.
software supply chainsecurity guidecis
https://www.devicesecurity.io/whitepapers/supply-chain-security-guidance-addressing-president-bidens-w-10853?rf=RAM_AlsoBeInterestedIn
If you think your software is secure, get ready to prove it. The President has directed several government agencies to begin formulating guidelines and rules to
supply chain securityexecutive orderguidanceaddressingpresident
https://www.mend.io/blog/secure-npm-ecosystem-with-mend-renovate/
Nov 17, 2025 - Discover how Mend Renovate 42 is strengthening npm ecosystem security with “minimum release age” enforcement and best-practice defaults.
supply chain securitymend renovateimprovingecosystem
https://www.binarly.io/
Binarly’s Transparency Platform offers firmware security for supply chain risk management. Gain visibility into threats and recommendations on remediation.
supply chain riskfirmware securitymanagement
https://www.bsigroup.com/en-CA/insights-and-media/insights/case-studies/how-certification-enabled-supply-chain-security-excellence/
Explore how certification enabled supply chain security excellence, showcasing successful strategies and best practices.
supply chain securitybest practiceachievingbsi
https://www.helpnetsecurity.com/2025/07/28/vendor-risk-management/
Protect your business by strengthening vendor risk management and addressing hidden fourth-party risks in your supply chain.
supply chain securitystrategymightmissingbiggest
https://www.activestate.com/thank-you/devops-and-slsa-best-practices-for-securing-your-software-supply-chain/
Learn how to make software supply chain security easier with SLSA and automated dependency vendoring.
software supply chainwebinardevopsslsasecurity
https://www.hcl-software.com/appscan/products/supply-chain-security
Ensure compliance and security across your software supply chain. HCL AppScan identifies vulnerabilities and strengthens your DevSecOps pipeline.
software supply chainsecurity appscanenterprise
https://sdtimes.com/supply-chain-security/ox-security-emerges-from-stealth-with-34m-to-provide-end-to-end-software-supply-chain-security/
Sep 29, 2022 - Software Development News
ox securitystealthprovideend
https://www.helpnetsecurity.com/2025/10/28/smart-air-compressor-risks-vulnerabilities/
Smart air compressor risks highlight how overlooked IIoT security gaps can cause production downtime and data integrity failures.
air compressorchainsecurityweaknessesfound
https://www.fda.gov/drugs/drug-supply-chain-integrity/fda-leads-effort-create-supply-chain-security-toolkit-medical-products
Protecting the integrity of the medical product supply chain is complex and requires a global approach. FDA led a collaboration within Asia Pacific Economic...
supply chain securityfdaleadseffortcreate
https://www.industryweek.com/supply-chain/article/21159957/top-5-supply-chain-security-concerns-and-best-practices-to-address-them
The average cost of a data breach is nearly $4 million, so companies need to protect their supply chains with a combination of layered defenses.
supply chain securitybest practicestopconcerns
https://www.informationweek.com/cyber-resilience/what-you-can-do-about-software-supply-chain-security
Forrester senior analyst Janet Worthington gives a preview of a Forrester Security & Risk panel Dec. 11, and explains how software 'choosers,' 'producers,'...
software supply chainsecurity