SBOMs stories

Codific sees 2026 cybersecurity shaped by shadow AI, passwordless logins, tighter regulation and a sharper focus on software supply chains.

Minimus unveils Image Creator, enabling enterprises to build secure, custom container images with enhanced compliance and reduced vulnerabilities.

AI integration in embedded software rises, with 89.3% using AI coding tools, yet 21.1% doubt their security against AI-specific risks, says Black Duck report.

BlueVoyant has launched a Software Bill of Materials tool to help firms manage third-party software risks and improve supply chain cyber defence.

Red Hat launches Advanced Developer Suite on OpenShift, enhancing developer productivity, AI integration, and application security with new tools and templates.

Matt Aldridge from OpenText Cybersecurity warns that enterprises must bolster their AI security measures in 2025 to combat evolving cyber threats.

Cloudsmith has announced its compliance with the Open Container Initiative v1.1 standard, enhancing container image management and software supply chain relationships.

Memory safety vulnerabilities are surging in industrial control systems, with over 3,000 reported in 2022, prompting urgent calls for enhanced security measures.

Sonatype's latest report reveals open source software now comprises 90% of modern development, with a staggering 156% rise in malicious packages.

CAST has unveiled its CAST SBOM Manager, an automated tool designed to streamline Software Bill of Materials management for software providers facing new compliance mandates.

Sonatype's SBOM Manager and Nexus Repository are now available on AWS Marketplace, offering AWS users enhanced software supply chain security and management.

Endor Labs reveals major security flaws in CocoaPods, threatening apps like Instagram and Uber. Critical CVEs could impact Swift and Objective-C supply chains.

Sonatype releases its SBOM Manager, a crucial tool to help organisations track and manage software components.

A Checkmarx study shows 63% of organisations faced software supply chain attacks in the past two years, with open-source software posing major risks.

DigiCert's new Device Trust Manager aims to secure IoT devices throughout their lifecycle, addressing complex compliance needs and ensuring operational continuity amidst rising threats.

Cybersecurity firms, Legit Security and GuidePoint Security, form strategic partnership to enhance businesses' application security positions, helping them navigate challenges while bolstering productivity.

CAST Highlight has been ranked top for user satisfaction in G2's SBOM management category, affirming its efficacy as a streamlined, cloud-based Software Bill of Materials (SBOM) solution.

Sonatype debuts its innovative SBOM Manager at KubeCon Europe, offering companies improved compliance and cybersecurity in software supply chains.

SBOMs will be key to dealing with the next big vulnerability and incredibly useful in the fight to minimise the effects of smaller weaknesses.