Supply Chain Security stories - Page 5

SUSE expands Rancher Prime with AI agents and deeper virtualisation, unifying VM and container management to streamline modern workloads.

Rapid7 warns that hands-on attacks against cellular IoT hardware can pivot through trusted modules to breach cloud and backend systems.

Ping unveils Identity for AI, a runtime identity framework to govern autonomous software agents' access, actions and accountability.

Dell unveils quantum-safe PC firmware, faster ransomware recovery and expanded AI data monitoring to tackle emerging cyber threats.

Cloudsmith adds automated controls to quarantine and block risky dependencies, tightening enforcement on software supply chain security.

Red Hat reports 97% of organisations suffered cloud-native security incidents last year, exposing basic failings in configuration and governance.

Veracode unveils an AI-driven tool that automatically fixes open-source vulnerabilities, tackling mounting security debt in software supply chains.

Sysdig unveils runtime security for AI coding agents, promising real-time monitoring of autonomous dev tools to curb emerging risks.

HPE Threat Labs warns cybercrime now runs like big business, as AI-fuelled, industrial-scale attacks hammer government and finance.

Dell unveils quantum-ready PC firmware and AI-focused data protection tools to counter emerging threats across devices and AI workloads.

Aqua Security's Trivy GitHub Action was hijacked to ship infostealer code via CI/CD pipelines, exposing secrets across downstream users.

GitLab opens agentic AI to free-tier users, sets USD $0.25 flat fee for automated code reviews and expands security false-positive filtering.

Yubico and Delinea unite hardware keys with identity checks to ensure each high‑risk AI agent action is explicitly approved by a human.

Iceland-based Varist has launched a free malware scanner that rates suspicious files in seconds to counter fast-evolving AI-driven threats.

OPSWAT founder Benny Czarny urges a prevention-first cyber defence in his new book, arguing detection-led tools can no longer keep pace.

DigiCert reports record Q4 ARR in FY26 as DigiCert ONE platform growth, acquisitions and automation demand drive digital trust expansion.

SpecterOps broadens BloodHound Enterprise to map identity attack paths across Okta, GitHub and Jamf-managed Macs in hybrid environments.

Miggo and Grafana link runtime security to Grafana Cloud telemetry, promising major cuts to critical vulnerability noise for joint users.

Keysight debuts SBOM Manager to automate software bills of materials as EU and US cyber rules tighten transparency and compliance demands.

Chainguard launches a free Catalog Starter pack, giving developers five production-grade secure container images from its vast library.