Monthly Archives: March 2013

New Webinar – When Nexus is Not Enough: Manage Your Components Beyond the Repository


March 27, 2013 By
Emily Blades

At the end of April we’ll be announcing a whole new product line, Sonatype CLM, to help development groups make the best component choices. CLM (Component Lifecycle Management) extends your investment in Nexus to help inform and manage the entire software lifecycle — from design to production. We want to give you a sneak preview. […]

Continue reading...

Vulnerability database infected for at least two months


March 19, 2013 By
The Vigilant Application Owner

Downed US vuln catalog infected for at least TWO MONTHS. A vulnerability in Adobe’s ColdFusion software allowed the National Vulnerability Database and other National Institute for Standards and Technology (NIST) Web sites to be infected with malware, prompting NIST to take them offline. Source: http://www.theregister.co.uk/2013/03/14/adobe_coldfusion_vulns_compromise_us_malware_catalog/

Continue reading...

Do you know if you have been hacked?


By
The Vigilant Application Owner

It takes a company 243 days to discover a sophisticated attack, study shows. A report by Mandiant focusing on advanced persistent threats (APTs) outlined several findings, including that there are on average 243 days between an attacker gaining access and when the attack is uncovered. Source: http://news.softpedia.com/news/It-Takes-a-Company-243-Days-toDiscover-a-Sophisticated-Attack-Study-Shows-337342.shtml

Continue reading...

NIST National Vulnerability Database down


By
The Vigilant Application Owner

Malware identified on two Web servers. The National Institute of Standards and Technology (NIST) took down several of their Web sites, including the National Vulnerability Database (NVD) after malware was found on them. Source: http://news.softpedia.com/news/NIST-National-Vulnerability-Database-DownMalware-Identified-on-Two-Web-Servers-337103.shtml

Continue reading...