In 2021 SolarWinds was the subject of a massive cybersecurity attack that spread to the company's clients - and it was not discovered for months. The attack sent shockwaves though many industries and renewed the focus on supply chain security.
If large companies with many security professionals can be victims of an attack, everyone could be hit.
Software supply chain usually refers to the interaction of resources and processes needed to build, test, and deploy software.
This session focuses on the security of such a chain, briefly reviews some past impactful supply chain attacks, and discusses some best practices and tools aimed at mitigating them, including a demo.
The webinar will also provide knowledge on the typical software development process including attacks (and consequences), that can affect the process.
- Security of software supply chain is complex and fragile
- Best practice on how to mitigate attacks
- Organisations benefit from gaining transparency on the software they use
- Examples and consequences of supply chain attacks
- Open-source dependencies need to be carefully chosen
- Lorena Ronquillo, KEA
- Michael Lentge Andersen, Derant