Name: Managing the Risk of Software Supply Chain Attacks
Start: 2024-10-30T16:00:00+0000
End: 2024-10-30T16:40:00+0000

Wednesday October 30, 2024 16:00 - 16:40 GMT

The Liffey A

Mark Hahn, Qualys

Open-Source Software (OSS) are flourishing and are getting used by at least 90% of companies. Modern applications are built on webs of open-source code, APIs, and third-party integrations.

Because of this hackers are now compromising weak links in existing software supply chains. Software supply chain (SSC) threats include tampering with updates (tainted updates), compromised third-party libraries, vulnerabilities in open-source packages, malicious code or malware in packages etc. Software Supply Chain attacks have an average increase of 742% per year.

This talk covers ways to prevent software supply chain attacks and how to respond when the ecosystem has been tainted.

https://www.usenix.org/conference/srecon24emea/presentation/hahn

Speakers

Mark Hahn

Qualys

Mark Hahn is the Solutions Architect for Cloud and DevOps Security at Qualys. He uses DevSecOps and Site Reliability Engineering practices to ensure that software and applications are deployed with high velocity and with the utmost security. He shows clients how to build security... Read More →

Wednesday October 30, 2024 16:00 - 16:40 GMT
The Liffey A

Track 1

SREcon24 Europe/Middle East/Africa

Mark Hahn

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!