Generic
The Cybellum Blog

Chris Gates Joins Cybellum’s Advisory Board

Christopher Gates, Leading Medical Device Security Expert, Joins Cybellum’s Industry Advisory Board Author of the Groundbreaking Book: Medical Device Cybersecurity for Engineers and Manufacturers Is One of the Foremost Authorities in this Industry   Tel Aviv, Israel, March 14, 2023 – Cybellum, developers of the Product Security Platform for connected products, announced today that Christopher […]

Adam Shostak- LTOOD

What Video Games and Star Wars Can Teach Us About Threat Modeling with Adam Shostack

This article is based on Adam Shostack’s interview on the Left to Our Own Devices podcast.   Adam Shostack, is a threat modeling expert, pioneer of the CVE standards, author of  “What Every Engineer Should Learn From Star Wars,” advisor,  game designer, and lecturer. When Adam realized his work affects people’s lives and data and […]

SBOM & Beyond- Part 3

Keeping the Software Supply Chain Accountable with SBOMs

What will your team do if a software component or a supplier’s entire software suite becomes untrustworthy overnight? Do you have a backup plan in place?  It’s a scenario that every OEM fears, but many will confront– with most admitting they have no idea what they would do. That’s because current threat intelligence, CVEs, and […]

How SBOMs Can Forecast Product Security Storms

The Product Security community has had a rough go of it lately.  Ransomware attacks, New regulation, Greater internal liabilities, Oh, and no cross-industry processes to better manage the long tail suppliers.  Remember years ago how the local news team would forecast a sunny day, just for it to rain? But, with the advancements in connecting […]

Cybellum FIC

Cybellum and FIC Partner to Expand Vehicle Cybersecurity Offering in Asia Pacific

This partnership provides automotive industry domain-specific cybersecurity expertise and solutions for enhanced safety and regulatory compliance  Tel Aviv, Israel, February 3, 2023 – Cybellum, provider of the Product Security Platform for connected products, has partnered with First International Computer (FIC) to expand its APAC business, providing the automotive industry with domain-specific cybersecurity expertise and solutions […]

Flex the VEX Emoji

Flex the VEX: A Better Way to Secure Products

VEX reports have finally hit the mainstream and the excitement surrounding them has as much to do with automation as it does with vulnerability management.  To appreciate the full practicality of Vulnerability and Exploitability Exchange (VEX) reports, we need to go back to our old friend, the Software Bill of Material, endearingly known as ‘SBOM’. […]

Ronen Talks Strategy- SBOM 1

Making the most of SBOMs: A product security perspective

Part 1: Using SBOMs for enhanced visibility and control  The dynamic nature of software development exposes the software supply chain to countless sources of both known and unknown vulnerabilities. These can take multiple forms, from insecure open-source software to zero-day exploits.  The connected product software revolution’s growing reliance on open-source software increases the risk and […]

LTOOD: Thomas LaRock

Insights From a Nation State Software Supply Chain Attack With Thomas LaRock

Two years following one of the worst cyber-espionage attacks on the USA, we sat down with Thomas LaRock from SolarWinds to learn about how they managed the SUNBURST crisis and came away stronger Thomas LaRock is the Senior Technical Product Marketing Manager–or as they like to put it ‘Head Geek’–at SolarWinds. After many years as […]

PR- Version 2.22

Cybellum Transforms SBOM Management and Compliance Oversight

Advanced workflow, approval process and management dashboard enhance control, distribution and supervision, while reducing errors and streamlining the entire SBOM management process   Israel, Tel Aviv, January 26, 2023 – Cybellum, provider of the award-winning Product Security Platform for connected product and device manufacturers, announced today the release of version 2.22, providing enhanced SBOM management […]

Subscribe to our blog to stay updated