CISA, NIST Release Guidance on Defending Against Supply Chain Attacks
In light of recent supply chain intrusions, the Department of Homeland Security’s (DHS) Cybersecurity and Infrastructure Agency (CISA) and National Institute for Standards and Technology (NIST) have released new guidance on defending supply chain software, using the NIST framework to identify and mitigate risks.
In addition to information about supply chain risks and common attack techniques, the resource helps guide users through identifying, assessing, and mitigating supply chain risks using NIST’s Cyber Supply Chain Risk Management (C-SCRM) framework and the Secure Software Development Framework (SSDF).
“Network defenders are limited in their ability to quickly mitigate consequences after a threat actor has compromised a software supply chain. This is because organizations rarely control their entire software supply chain and lack authority to compel every organization in their supply chain to take prom
Mintegral passes user privacy security assessment performed by internationally recognized accounting firm
News provided by
Share this article
Share this article
SAN FRANCISCO, Jan. 7, 2021 /PRNewswire/ Mintegral, a mobile advertising platform, has announced that its SDK products have completed a user privacy security assessment performed by an internationally recognized accounting firm. The audit report showed that Mintegral has established a complete system to maintain the security of users personal information and other sensitive information during the collection and transmission process.
Secure Software Development Framework (SSDF) used by the assessment
The Mintegral user privacy security assessment was carried out by a top 10 international accounting firm with extensive service experience in data privacy and network security to provide customers with comprehensive solutions and strategies to help improve risk management.