Page 6 - Open Source Code News Today : Breaking News, Live Updates & Top Stories | Vimarsana

Advertisement In the Wake of Solar Winds Compromise, CISA and NIST Issue Guidance for Preventing, Defending and Mitigating Software Supply Chain Attacks Thursday, May 20, 2021 The Cybersecurity & Infrastructure Security Agency (CISA) and the National Institute of Standards and Technology (NIST) jointly published a new resource as part of their ongoing efforts to promote awareness of, and help organizations defend against, supply chain risks. The publication,  Defending Against Software Supply Chain Attacks, provides recommendations for software customers and vendors as well as key steps for prevention, mitigation and resilience of software supply chain attacks. Software supply chain attacks occur when a cyber threat actor infiltrates a software vendor’s network and employs malicious code to compromise the software before the vendor sends it to their customers. A software supply chain attack can occur at any phase of the supply chain, including design, development an

United statesSolarwind orionGramm leach blileySoftware supply chainNational institute of standardsCybersecurity infrastructure security agencyInfrastructure security agencyNational instituteDefending against software supply chain attacksSolar windsOpen source codeCalifornia civil codeIllinois personal information protection actBiometric information protection actAgainst software supply chain attacksAdministrative and regulatory