Looney Tunables? CVE-2023-4911? You might be using a vulnerable Linux distribution.
Introduction If you are an individual using Linux or one who has been a fan of Looney Tunes/Toons then do read further to find out how Looney Toons is a…
Introduction If you are an individual using Linux or one who has been a fan of Looney Tunes/Toons then do read further to find out how Looney Toons is a…
Naman Tandon, Lead Engineer, Deepfactor • October 16, 2023
Security Scanning Tools Overview There are significant changes happening in the world of software development. How we create applications (monolithic to microservices), how fast we ship them (continuous integration), how…
Rizwan Merchant, Vice President of Engineering, Deepfactor • October 9, 2023
Deepfactor Release 3.3 Overview In Release 3.3 of Deepfactor Developer Security, we have made significant enhancements to the platform's artifact scanner and runtime correlation to help users prioritize SCA findings.…
Deepfactor • August 24, 2023
Another August, another Hacker Summer Camp. The annual gathering of 25,000 like-minded hackers and security enthusiasts descended on Vegas for a week of get togethers, talks, and parties. This year…
Mike Larkin, Founder & CTO, Deepfactor • August 23, 2023
Zenbleed (CVE-2023-20593) was announced today. This is a vulnerability affecting AMD processors based on the Zen2 microarchitecture (certain EPYC CPUs used in datacenter servers and Ryzen/Threadripper CPUs used in desktop/laptop…
Rizwan Merchant, Vice President of Engineering, Deepfactor • July 24, 2023
CVE-2023-38408, discovered by the Qualys Threat Research Unit (TRU), describes an RCE (remote code execution) vulnerability made possible by an unwanted interaction between OpenSSH’s ssh-agent executable, the dlopen() and dlclose()…
Mike Larkin, Founder & CTO, Deepfactor • July 21, 2023
In preparation for the June 11th deadline of President Biden’s Executive Order (EO) on Improving the Nation’s Cybersecurity, Deepfactor has focused on educating customers about the importance of accurately and…
Deepfactor • June 8, 2023
Modern applications rely on open source and third-party software for a majority of their code base. Many of those software building blocks come with vulnerabilities and license risks that organizations…
Deepfactor • March 30, 2023
With the June 2023 Supply Chain Security executive order looming, Deepfactor 3.2 introduces important SCA, SBOM, and runtime security enhancements designed to help customers reduce risk, improve supply chain security,…
Deepfactor • March 21, 2023
In the past couple of years in my technical product role here at Deepfactor, I have had several meetings with VPs and directors of security from large, global organizations in…
Vikas Wadhvani, Director of Engineering—Product, Deepfactor • December 2, 2022
When Deepfactor was launched in September 2020, the market was [being] upended by technical innovations in containerization (i.e. K8s), software delivery (i.e. CI/CD), and security (i.e. more on that below).…
Deepfactor • November 14, 2022
By Guest Author Teja Myneedu, Director—Product Security Engineering and Research, TripActions OpenSSL is a commonly used cryptographic toolkit widely used for SSL/TLS across web-based applications. The OpenSSL project routinely releases bug…
Teja Myneedu, Guest Author, Director—Product Security Engineering and Research, TripActions • November 2, 2022