Dark Reading

Novo Nordisk Breach Highlights Software Development Pipeline Risk

A recent — and likely massive — breach at Novo Nordisk, where attackers reportedly gained an initial foothold using a single GitHub access token, underscores how code repositories and developer ...
CSOonline

AI development pipeline attacks expand CISOs’ software supply chain risk

Malicious campaigns targeting code used by developers of AI applications underscore the need to develop comprehensive risk-based programs around software dependencies and components. Widespread flaws ...
Aviation Week

New Software Pipeline Seeks To Smooth Agile Path For F-35

A rash of software bugs showing up on test and operational F-35s has prompted a new approach to testing and monitoring coding activity inside Lockheed’s Fort Worth factory. Credit: U.S. Air Force A ...