Black Duck Software
Black Duck Software
Blog Post

New blog articles detected.

Black Duck Software
Black Duck Software
Blog Post

New blog articles detected.

  • Scan Nirvana: Hub Detect for All Native Build & CI Tools
    When you’re trying to secure and manage the open source code in your applications, the first step is to accurately discover all the open source in your systems. Simply put, if you don’t know which open source components you’re using, you can’t protect yourself from vulnerabilities in those components. That’s why Black Duck uses a multi-factor discovery method, leveraging the power of b...
Black Duck Software
Black Duck Software
Blog Post

New blog articles detected.

  • Announcing Hub Detect: Open Source Discovery for a DevOps World
    Software development teams have embraced open source and DevOps as key ingredients for speeding the delivery of new functionality to the market. Likewise, build automation capabilities like continuous integration (CI) tools and package managers go hand-in-hand to deliver better software faster. As Black Duck Hub helps organizations identify and manage the use of open source software, w...
Black Duck Software
Black Duck Software
Blog Post

New blog articles detected.

  • The Quietly Accelerating Adoption of the AGPL
    The AGPL (Affero General Public License) has continued to gain in popularity and is showing up frequently in modern code bases. My blog Are SaaS Companies Immune to Open Source Risk? mentioned a key concern for SaaS or Cloud companies, a class of open source licenses that includes the Affero GPL designed to plug the SaaS loophole. (As I describe in the blog, this is by no means the on...
Black Duck Software
Black Duck Software
Blog Post

New blog articles detected.

  • Open Source & Secure Voting, GDPR & Compliancy, & #NUGATE
      Our vulnerability of the week is over five years old. But CVE-2011-4109, a high-severity vulnerability in OpenSSL, was back in the news again, as a hacker used the vulnerability to crack a voting machine at DEF CON 25.  Is open source the magic bullet to secure voting?  You’ll find contrasting opinions in this week’s Open Source Insight, as well as news and opinion on the bad habit...
Black Duck Software
Black Duck Software
SlideShare Presentation

New SlideShare presentations detected.

  • Open Source Insight: Open Source & Secure Voting, GDPR & Compliancy, & #NUGATE
    Our vulnerability of the week is over five years old. But CVE-2011-4109, a high-severity vulnerability in OpenSSL, was back in the news again, as a hacker used the vulnerability to crack a voting machine at DEF CON 25.  Is open source the magic bullet to secure voting?  You’ll find contrasting opinions in this week’s Open Source Insight, as well as news and opinion on the bad habits cybersecurity...
Black Duck Software
Black Duck Software
Blog Post

New blog articles detected.

  • Can Open Source Software Secure Voting?
    “If you’re wondering about my opinion, I think we should stick to paper ballots.” ~ DEFCON 25 “Voting Village” hacker Voting machine software security needs to be improved dramatically, and as soon as possible. U.S. voting machines are frighteningly easy targets for hackers. At this year’s DEF CON 25 convention it took only a few hours for white hat hackers to break into five differen...
Black Duck Software
Black Duck Software
YouTube Video
Black Duck Software
Black Duck Software
Blog Post

New blog articles detected.

  • Could Open Sourcing  Adobe Flash Preserve Internet History?
      Anyone who has spent time on the internet over the last quarter of a century has probably seen Adobe Flash in one iteration or another, and has likely spent quite a bit of time updating it in light of newly discovered security vulnerabilities. There have been over 1,000 vulnerabilities in the Adobe Flash Player since 2005 (when Adobe acquired Macromedia), and they tend to have fairl...
Black Duck Software
Black Duck Software
Blog Post

New blog articles detected.

  • RSA Singapore Review - The Perils of Security Hubris
    With RSA Singapore now in the books, it’s time to look back on the event and a core theme of experiential learning. The stage was set for this with IBM’s Diana Keely highlighting how today’s attacks are rather reminiscent of successful tactics from the past — a form of cyber groundhog day. She highlighted a number of vectors that should be table stakes for any organization, but we coll...
Black Duck Software
Black Duck Software
Blog Post

New blog articles detected.

  • HBO, Voting Machines & Car Washes Hacked & Black Hat / DEFCON News
    While there’s been plenty of attention focused on possible hacks with vehicles, a group of security researchers recently found vulnerabilities in internet-connected, drive-through car washes. Voting machines are hacked in less than 90 minutes at DEFCON. Is Shodan the world’s scariest search engine? How did HBO get hacked? And Black Duck reports record revenue and record revenue growth ...
Black Duck Software
Black Duck Software
SlideShare Presentation

New SlideShare presentations detected.

  • Open Source Insight: HBO, Voting Machines & Car Washes Hacked & Black Hat / DEFCON News
    While there’s been plenty of attention focused on possible hacks with vehicles, a group of security researchers recently found vulnerabilities in internet-connected, drive-through car washes. Voting machines are hacked in less than 90 minutes at DEFCON. Is Shodan the world’s scariest search engine? How did HBO get hacked? And Black Duck reports record revenue and record revenue growth for the fir...
Black Duck Software
Black Duck Software
Blog Post

New blog articles detected.

  • Q&A on Risk-Ranking Open Source Vulnerabilities
    Earlier this year VP of Security Strategy Mike Pittenger presented a webinar on risk-ranking open source vulnerabilities, and how that process can increase security effectiveness while maintaining developers' agility. As developers continue their rapid adoption of both containers and Continuous Integration tools, integrating static and open source analysis makes finding vulnerabilities...
Black Duck Software
Black Duck Software
Blog Post

New blog articles detected.

  • OTA Updates Driving Connected Car Revolution?
    Fiat Chrysler Automobiles (FCA) announced recently that it was recalling 7,802 Dodge Challengers to “update transmission software,” in response to vehicle movement (“rolling”) after drivers shifted into park. While 7,802 pales compared to the 811,000 recalled from inadvertent "rolling" last year, the concept of pulling cars away from customers for a software upgrade is beginning to cat...
Black Duck Software
Black Duck Software
SlideShare Presentation

New SlideShare presentations detected.

  • Open Source Insight: Hospital, Medical Devices, Banking, and Automotive Cybersecurity News
    A wide spectrum of cybersecurity and open source security news in this week’s Open Source Insight, including the need for hospitals to ramp up their cybersecurity efforts; the need to include open source security in any plan to secure medical devices; a major data breach at Italian bank Unicredit; two Black Duck executives share their views on open source security in video interviews; and why the...
Black Duck Software
Black Duck Software
Blog Post

New blog articles detected.

  • Hospital, Medical Devices, Banking, and Automotive Cybersecurity News
    A wide spectrum of cybersecurity and open source security news in this week’s Open Source Insight, including the need for hospitals to ramp up their cybersecurity efforts; the need to include open source security in any plan to secure medical devices; a major data breach at Italian bank Unicredit; two Black Duck executives share their views on open source security in video interviews; ...
Black Duck Software
Black Duck Software
Blog Post

New blog articles detected.

  • Can Blockchain and the BTC License Fund Health Insurance?
    The BTC license hit my radar screen recently. Billed as “sexy” by the author, the permissive BTC license employs Blockchain and may signal a new trend going forward that could transform the way many developers work... and how they get their health insurance.
Black Duck Software
Black Duck Software
SlideShare Presentation

New SlideShare presentations detected.

  • GDPR and Open Source: Security by the Numbers
    You can’t protect what you don’t know about. Talk to your heads of software development and information security, and ask them to produce a list of open source components your organization uses. Here’s what you need to know.
Black Duck Software
Black Duck Software
SlideShare Presentation
Black Duck Software
Black Duck Software
Blog Post

New blog articles detected.

  • Is the Automotive Industry Reaching an iPhone Moment?
    Last Wednesday the House panel approved a measure to move forward a bill addressing autonomous cars. Does this signal that we are fast approaching the coming of age for advanced technology in vehicles? A history of the smartphone provides some clues as to where we are in the product development life cycle.
Black Duck Software
Black Duck Software
Blog Post

New blog articles detected.

  • Why People and Businesses Get Blindsided by Threats
    When Black Duck released the results of its 2017 Open Source Security and Risk Analysis, the results were deeply concerning. Among the audited applications, 96% utilized open source, of which 67% contained known vulnerabilities. On average, the identified vulnerabilities had been known for four years.
Black Duck Software
Black Duck Software
Landing Page
Black Duck Software
Black Duck Software
Blog Post

New blog articles detected.

  • Devil’s Ivy, Bad Taste, & New SambaCry Vulnerability
    We have two CVEs of the week this week, CVE-2017-9765, better-known as “Devil’s Ivy,” and CVE-2017-11421, dubbed “Bad Taste” by its discoverer. Devil’s Ivy results in remote code execution, and was found in an open source third-party code library from gSOAP. When exploited, it allows an attacker to remotely access a video feed or deny the owner access to the feed. Genivia, the company...

Out-Market Your Competitors?

Get complete competitive insights on over 2.2 million companies to drive your marketing strategy.

Create Free Account Log in

By signing up, you agree to the Terms of Service and Privacy Policy.

Out-Market Your Competitors

Get complete competitive insights on over 2.2 million companies to drive your marketing strategy.

Create Free Account

Already a user?  Log in

By signing up, you agree to the Terms of Service and Privacy Policy.