In this premiere episode of the ActiveState Podcast, hosts Pete Garcin and Dana Crane delve into the alarming increase in software supply chain attacks. They pinpoint vulnerabilities in open source software, and discuss various types of attacks like typosquatting and malware. Highlighting incidents such as SolarWinds and Log4j, the hosts shed light on the implications and sophistication of these threats. The episode underscores the need for strong security measures and offers a preview of future topics on safeguarding your software supply chain.
00:00 Episode 1: The Rise of Software Supply Chain Attacks - Introduction
00:25 Understanding ActiveState's Role in Software Security
00:52 Defining the Software Supply Chain
02:49 The Vulnerability of Open Source Supply Chains
03:57 The Impact of Software Supply Chain Attacks
10:22 The Evolution of Software Supply Chain Management
13:27 Outsourcing Supply Chain Management for Better Security
16:57 The Growing Threat of Software Supply Chain Attacks
19:24 Conclusion and Invitation to Learn More