Latest Blog Posts

post image
October 31, 2022

The Next Heartbleed?

Heartbleed (CVE-2014-0160) in 2014 left the industry in a scramble to patch one of the most prominently used open-source projects in the ecosystem today, OpenSSL.

Read More
post image
October 21, 2022

Kusari presenting at KubeCon and Cloud Native SecurityCon NA 2022

KubeCon + CloudNativeCon is right around the corner and we are excited to be attending in person!

Read More
post image
October 20, 2022

A high fidelity view of software supply chain

Understanding and maintaining your software supply chain can be a task that needs 24/7 vigilance.

Read More
post image
September 19, 2022

Government Memo for Enhancing the Security of the Software Supply Chain

Executive Order (EO) 14028, Improving the Nation’s Cybersecurity was released last year in May pushing security and integrity of the software supply chain.

Read More
post image
July 20, 2022

Not Just Third Party Risk

There’s a misconception in Cybersecurity among some that Software* Supply Chain Security is just Third Party Risk Management (TPRM).

Read More
post image
June 27, 2022

SPIFFE/SPIRE CSI Driver

SPIFFE/SPIRE is a great tool to use when you want to perform workload attestation and mutually authentication in heterogeneous environment.

Read More