For Target, it was the HVAC vendor. For JPMorgan Chase, it was a website run by a third party. Enterprises are becoming even more concerned about the security of their partners as news stories like these get the spotlight: attackers coming in through the digital loading dock. You may think you’ve mapped your attack surface across your own… READ MORE

The following is a guest post by Wendy Nather, Research Director, Security, 451 Research. As a former CISO, I’m always happy to see practical advice for defenders. In increasing order of usefulness, there are these types of advice: “Here’s what could be wrong; you might want to take a look at that.” “This is wrong, and good luck fixing it.” “This is wrong, and here’s how we think you should fix… READ MORE

This article is a guest post by Wendy Nather, Research Director of the Enterprise Security Practice, 451 Research. Veracode is a client of 451 Research. When the revolution comes, the first up against the firewall will be your business partners – along with every other third-party that provides you with software. It used to be that you could call for more secure software from individual vendors… READ MORE