Software Integrity

CyRC analysis: CVE-2018-18907 authentication bypass vulnerability in D-Link DIR-850L wireless router

This post is the Synopsys Cybersecurity Research Center’s (CyRC) analysis of CVE-2018-18907, an authentication bypass vulnerability in the D-Link DIR-850L wireless router.

Continue Reading...

Don’t expect jailed CEOs, but Wyden at least puts consumer privacy on the table

The Consumer Data Protection Act (as outlined in the CDPA draft circulated in early November by Sen. Ron Wyden) might not send CEOs to jail, but it will certainly help protect Americans’ data.

Continue Reading...

Black Friday and Cyber Monday security concerns

Ahead of the upcoming shopping season, we’re spreading awareness of potential Black Friday and Cyber Monday security concerns affecting people who shop and sell online.

Continue Reading...

Threats obvious, but electronic voting systems remain insecure

Election security requires that voters trust the results. But many U.S. electronic voting systems are clearly insecure, and untrustworthy. What are we doing about it?

Continue Reading...

10 critical cloud security threats in 2018 and beyond

Explore 10 critical cloud security threats: data breaches, human error, data loss with no backup, insider threats, DDoS attacks, insecure APIs, exploits, account hijacking, APTs, and CPU flaws.

Continue Reading...

Shared responsibility model: Who owns cloud security?

Research shows that if you’re new to the cloud, you’re probably less familiar with the shared responsibility model—and less likely to be proactive in securing your cloud deployment. What is the shared responsibility model? And are you opening yourself up to the risk of data breach without even knowing it? If you’re new to the […]

Continue Reading...

Black Duck by Synopsys FLIGHT East 2018 presentations

Today’s software contains on average more than 50% open source. That’s why organizations with foresight are including software composition analysis in their security plans. FLIGHT East 2018 was full of tips, techniques, applications, and solutions for open source security. Here are some of the presentations. Today’s software contains significant amounts of open source, on average […]

Continue Reading...

Webinar: 10 emerging threats to today’s enterprise applications

In Dark Reading’s on-demand webinar with Brad Causey (Zero Day Consulting) and Meera Rao (Synopsys), you’ll learn about 10 emerging enterprise application security threats to be aware of.

Continue Reading...

Synopsys Software Integrity Group awards for 2018

Synopsys Software Integrity Group is pleased to have been named a leader in software security by industry analysts. But we’re even more thrilled when the development community recognizes us for our accomplishments. Here are a few software security awards we received this year that we’re particularly proud of. Synopsys Software Integrity Group has been named […]

Continue Reading...

‘Cyber Pearl Harbor’ unlikely, but critical infrastructure needs a major upgrade | NCSAM at Synopsys

Officials have warned for decades of a “cyber Pearl Harbor” or “cyber 9/11” kind of attack on the nation’s critical infrastructure. Yet no attack has come. It’s either because our attackers can’t do it or haven’t really wanted to so far—and “can’t” seems less likely every day. Are we prepared for what’s next? The original version of […]

Continue Reading...