Sonatype Selected by Equifax to Support OS Governance Press Release

blog-logo Sonatype Blog

Ryan Berg

Ryan is the former Chief Security Officer at Sonatype. He is now the Chief Scientist/Director of Research and ML at Barkly.

Stewing Over Software Ingredients

Just the other day I was planning dinner for my family and thought it would be a great idea to bust out the Dutch oven I had to have, but rarely use, and make a nice stew. I ran to the grocery store

Read More...

Are OpenId and OAuth ‘Bleeding’?

By Ryan Berg on May 07, 2014 openid

Now that Heartbleed has become the new measuring stick for vulnerability disclosures, I have had several people ask me, “Is this OpenId/Oauth thing the next Heartbleed?” The long answer, as Run DMC

Read More...

Like a Good Holiday, the Verizon Breach Report is Here

By Ryan Berg on May 02, 2014 Sonatype Says

Like a good holiday the Verizon 2014 Data Breach Investigation Report (DBIR) is something I look forward to every year. Now that I’ve had some office time to digest this, I figured no better time to

Read More...

Sonatype & HP Partnership Offering a New Breed of Application Security

By Ryan Berg on February 24, 2014 Component Lifecycle Management

Today Sonatype and HP announced Sonatype’s Component Lifecycle Management (CLM) analysis technology has been integrated into HP’s cloud-based software security solution – HP Fortify on Demand.

Read More...

Another Security Breach ... Just in time for the holidays.

By Ryan Berg on December 23, 2013 PCI
Another Security Breach ... Just in time for the holidays.
Read More...

Flaws vs Bugs

By Ryan Berg on September 05, 2013 risk analysis
Flaws vs Bugs
Read More...

Hack Takes a Bite of the Apple

By Ryan Berg on July 23, 2013 Sonatype Says
Hack Takes a Bite of the Apple
Read More...

Soup Anyone?

By Ryan Berg on June 28, 2013 CISO
Soup Anyone?
Read More...

Do Vulnerability Counts Really Matter?

By Ryan Berg on June 20, 2013 Sonatype Says
Do Vulnerability Counts Really Matter?
Read More...