Matt Howard

Matt is a proven executive and entrepreneur with over 20 years experience developing high-growth software companies, at Sonatype, he leads corporate marketing, strategic partnering, and demand generation initiatives.

Follow me on:
Chinese Military Implicated in Equifax Breach
READ MORE

The “Big Hack” That Actually Happened - Chinese Military Implicated in Equifax Breach

By Matt Howard on February 11, 2020 vulnerabilities

3 minute read time

Members of the Chinese Military were implicated in the attack on Equifax's software supply chain. It's time to take software supply chain hygiene seriously.
Read More...
READ MORE

Three DevSecOps Lessons Drawn From Conversations With 45 CISOs

By Matt Howard on January 29, 2020 CISO

3 minute read time

CISOs reduce risk and significantly improve an organization's IT security posture by shifting more resources to the beginning of the digital supply chain.
Read More...
GettyImages-139741574
READ MORE

Sonatype Nexus is Rising Above the Swamp

By Matt Howard on December 16, 2019 Nexus vs. Artifactory

3 minute read time

With Vista by our side, Sonatype's direction is clear, and Nexus is rising above JFrog Artifactory. We invite you to test the Nexus difference.
Read More...
GettyImages-1055709678
READ MORE

In the Dark about Software Supply Chain Vulnerabilities

By Matt Howard on May 16, 2019 vulnerability

2 minute read time

The Barium attacks, revealed earlier this month, highlight new, pervasive tactics that are exceptionally dangerous.
Read More...
GettyImages-898699670
READ MORE

10 Years and 10,000 Hours: Lessons Learned From the FOSS/PLG Journey at Sonatype

By Matt Howard on February 20, 2019 News and Views

5 minute read time

At Sonatype, we’ve spent the past 10 years engineering and delivering a variety of tools and services to help the global open source community accelerate the.
Read More...
GettyImages-874379488
READ MORE

Hygiene for Open Source Software Is Now a PCI Requirement

By Matt Howard on February 19, 2019 PCI

2 minute read time

PCI’s new Secure SLC outlines security requirements to ensure payment software adequately protects the integrity and confidentiality of payment transactions.
Read More...
2019 Updated-1
READ MORE

Application Security Risk in 2019: It's All About The Supply Chain

By Matt Howard on December 28, 2018 AppSec

5 minute read time

Cyber criminals are intentionally planting vulnerabilities directly into the global supply of open source components.
Read More...
camera
READ MORE

House Oversight Report: Equifax Open Source Breach Was Entirely Preventable

By Matt Howard on December 10, 2018 devsecops

3 minute read time

Equifax is not alone. In the last decade, there have been hundreds, if not thousands, of companies have suffered the exact same, easily preventable, mistake.
Read More...
Chain Updated
READ MORE

Who Cares if Supermicro Happened. Supply Chain Attacks are Real and It’s Time to Pay Attention

3 minute read time

Technology supply chain attacks are happening in the wild, and whether or not the Supermicro story is real, it should be a wake-up call for all of us.
Read More...