Sonatype Delivers Premium Open Source Controls to GitHub | Press Release

blog-logo Sonatype Blog

Matt Howard

Matt is a proven executive and entrepreneur with over 20 years experience developing high-growth software companies, at Sonatype, he leads corporate marketing, strategic partnering, and demand generation initiatives.

The “Big Hack” That Actually Happened - Chinese Military Implicated in Equifax Breach

By Matt Howard on February 11, 2020 vulnerabilities
Members of the Chinese Military were implicated in the attack on Equifax's software supply chain. It's time to take software supply chain hygiene seriously.
Read More...

Three DevSecOps Lessons Drawn from Conversations with 45 CISOs

By Matt Howard on January 29, 2020 CISO
CISOs reduce risk and significantly improve an organization's IT security posture by shifting more resources to the beginning of the digital supply chain.
Read More...

Sonatype Nexus is Rising Above the Swamp

By Matt Howard on December 16, 2019 Nexus vs. Artifactory
With Vista by our side, Sonatype's direction is clear, and Nexus is rising above JFrog Artifactory. We invite you to test the Nexus difference.
Read More...

In the Dark about Software Supply Chain Vulnerabilities

By Matt Howard on May 16, 2019 vulnerability
The Barium attacks, revealed earlier this month, highlight new, pervasive tactics that are exceptionally dangerous.
Read More...

10 years and 10,000 Hours: Lessons Learned from the FOSS/PLG Journey at Sonatype

By Matt Howard on February 20, 2019 News and Views
At Sonatype, we’ve spent the past 10 years engineering and delivering a variety of tools and services to help the global open source community accelerate the pace of software innovation.
Read More...

Hygiene for Open Source Software Is Now a PCI Requirement

By Matt Howard on February 19, 2019 PCI
PCI’s new Secure SLC outlines security requirements to ensure payment software adequately protects the integrity and confidentiality of payment transactions and data. Try Sonatype's free Nexus
Read More...

Application Security Risk in 2019: It's All About The Supply Chain

By Matt Howard on December 28, 2018 AppSec
Cyber criminals are intentionally planting vulnerabilities directly into the global supply of open source components. Heading into 2019, organizations should learn how to run fast enough to harness
Read More...

House Oversight Report: Equifax Open Source Breach Was Entirely Preventable

By Matt Howard on December 10, 2018 devsecops
Equifax is not alone. In the last decade, there have been hundreds, if not thousands, of companies have suffered the exact same, easily preventable, mistake. If you want help eliminating open source
Read More...

Who Cares if Supermicro Happened. Supply Chain Attacks are Real and It’s Time to Pay Attention

Technology supply chain attacks are happening in the wild, and whether or not the Supermicro story is real, it should be a wake-up call for all of us.
Read More...