Log4j Highlights Need for Better Handle on Software Dependencies

[TechWeb]( Follow Dark Reading: [RSS]( January 04, 2022 LATEST SECURITY NEWS & COMMENTARY [Log4j Highlights Need for Better Handle on Software Dependencies]( Security pros say the Log4j vulnerability is another warning call for enterprises to get more disciplined when keeping track of software bills of materials. [Creating the Next Generation of Secure Developers]( Helping management prioritize developer education is a tall order, but it's one the industry must figure out. [(Sponsored Article) Why We Need "Developer-First" Application Security]( The way to improve the security of the modern software development life cycle and reduce the number of application-based breaches is to re-center app security around the needs of developers. [Florida's Broward Health Confirms October 2021 Breach]( The Oct. 15 breach compromised personal medical information, including history, condition, diagnosis, and medical record number. [MORE NEWS /]( [MORE COMMENTARY]( HOT TOPICS [7 Steps for Navigating a Zero-Trust Journey]( Don't think of zero trust as a product. Think of it as "how you actually practice security." [An Adaptive Security Strategy Is Critical for Stopping Advanced Attacks]( Ransomware demands a new approach to incident response. [6 Security-Tech Innovations We're Excited to See in 2022]( The details on cybersecurity technologies that we expect to advance rapidly in the coming year. [MORE]( EDITORS' CHOICE [In the Fight Against Cybercrime, Takedowns Are Only Temporary]( Disrupting access to servers and infrastructure continues to interfere with cybercrime activity, but it's far from a perfect strategy. LATEST FROM THE EDGE [Name That Edge Toon: In Your Face!]( Come up with a clever caption, and our panel of experts will reward the winner with a $25 Amazon gift card. LATEST FROM DR TECHNOLOGY [CISOs Plan What to Buy With Funds From the Infrastructure Bill]( CISOs welcome the cybersecurity funding allocated under the Infrastructure Investment and Jobs Act, but say it’s not perfect because it doesn't address a key issue: people. Tech Resources - [Zero Trust and the Power of Isolation for Threat Prevention]( - [Zero Trust in Real Life]( - [Protecting Your Mainframe Against Relentless Ransomware]( - [2021 Ransomware Threat Report]( - [Lessons Learned Investigating the SUNBURST Software Supply Chain Attack]( - [AWS S3 Usage & Cybersecurity Landscape]( - [Reckoning with Ransomware]( [ACCESS TECH LIBRARY NOW]( - [Beyond Spam and Phishing: Emerging Email-based Threats]( Even as enterprises adopt real-time messaging tools and platforms, email remains the hub of enterprise communications. Adversaries are increasingly targeting the enterprise email inbox, and security teams need to look further than just spam and phishing attacks. In this webinar, ... - [Cloud Security Strategies for Today's Enterprises]( The typical enterprise relies on dozens, even hundreds, of cloud applications and services sprawled across different platforms and service providers. Security teams need to shoulder the responsibility of coordinating security and incident response and not leave it up to individual ... [MORE WEBINARS]( FEATURED REPORTS - [Zero Trust in Real Life]( - [Enterprise Cybersecurity Plans in a Post-Pandemic World]( As the COVID-19 pandemic eases, IT security threats and the challenges involved in responding to them are trending upward. Security leaders expect that cyberattacks like ransomware, phishing, and malware will increase even as the pandemic eventually recedes. Download the Dark ... [MORE REPORTS]( CURRENT ISSUE [How Data Breaches Affect the Enterprise]( [DOWNLOAD THIS ISSUE]( [SUBSCRIBE NOW]( [BACK ISSUES]( | [MUST READS]( | [TECH DIGEST]( PRODUCTS & RELEASES [Pathr.ai Reaffirms Position as Privacy-Centric Solution for Retailers with Spatial Intelligence Platform]( [AV-Comparatives Reveals Results of Long-Term Tests of 19 Leading Endpoint Security Solutions]( [SecurityScorecard Research Reveals Cyber Vulnerabilities Pose a Threat to U.S. Maritime Security]( [MORE PRODUCTS & RELEASES]( Dark Reading Daily -- Published By [Dark Reading]( Informa Tech 303 Second St., Suite 900 South Tower, San Francisco, CA 94107 To update your profile, change your e-mail address, or unsubscribe, [click here.]( To opt-out of any future Dark Reading Daily Newsletter emails, please respond [here.]( Thoughts about this newsletter? [Give us feedback.](mailto:customerservice_informationhub@techweb.com) Keep This Newsletter Out Of Your SPAM Folder Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. We take your privacy very seriously. Please review our [Privacy Statement.]( [© 2022]( | [Informa Tech]( | [Privacy Statement]( | [Terms & Conditions]( | [Contact Us](mailto:customerservice_informationhub@techweb.com)