Supply Chain Security stories - Page 4

Drata rolls out agentic AI tools to speed third-party risk reviews, automate security questionnaires and rapidly build online trust centres.

Sonatype says smaller AI tied to live software data can outsecure larger models on dependency upgrades, slashing risk and cost.

Red Hat survey finds 97% of organisations hit by cloud-native security incidents, forcing delays, higher costs and loss of customer trust.

SUSE expands Rancher Prime with AI agents and deeper virtualisation, unifying VM and container management to streamline modern workloads.

Rapid7 warns that hands-on attacks against cellular IoT hardware can pivot through trusted modules to breach cloud and backend systems.

Ping unveils Identity for AI, a runtime identity framework to govern autonomous software agents' access, actions and accountability.

Dell unveils quantum-safe PC firmware, faster ransomware recovery and expanded AI data monitoring to tackle emerging cyber threats.

Cloudsmith adds automated controls to quarantine and block risky dependencies, tightening enforcement on software supply chain security.

Red Hat reports 97% of organisations suffered cloud-native security incidents last year, exposing basic failings in configuration and governance.

Veracode unveils an AI-driven tool that automatically fixes open-source vulnerabilities, tackling mounting security debt in software supply chains.

Sysdig unveils runtime security for AI coding agents, promising real-time monitoring of autonomous dev tools to curb emerging risks.

HPE Threat Labs warns cybercrime now runs like big business, as AI-fuelled, industrial-scale attacks hammer government and finance.

Dell unveils quantum-ready PC firmware and AI-focused data protection tools to counter emerging threats across devices and AI workloads.

Aqua Security's Trivy GitHub Action was hijacked to ship infostealer code via CI/CD pipelines, exposing secrets across downstream users.

GitLab opens agentic AI to free-tier users, sets USD $0.25 flat fee for automated code reviews and expands security false-positive filtering.

Yubico and Delinea unite hardware keys with identity checks to ensure each high‑risk AI agent action is explicitly approved by a human.

Iceland-based Varist has launched a free malware scanner that rates suspicious files in seconds to counter fast-evolving AI-driven threats.

OPSWAT founder Benny Czarny urges a prevention-first cyber defence in his new book, arguing detection-led tools can no longer keep pace.

DigiCert reports record Q4 ARR in FY26 as DigiCert ONE platform growth, acquisitions and automation demand drive digital trust expansion.

SpecterOps broadens BloodHound Enterprise to map identity attack paths across Okta, GitHub and Jamf-managed Macs in hybrid environments.