ISACA TRV TechTalk: Tech Talk : All about security open source and bugs like - log4j
Speaker: Vandana Verma Sehgal
Security Advocate, SNYK INC
Date: 30th Jan 2022
Time: 5:00 PM IST
Modernization of applications is the need of the hour. However, we still see the vulnerabilities like SQL injection, sensitive data exposure, and much more that keeps creeping in. When loopholes in applications (such as legacy, desktop, web, mobile, microservices) are exploited, it can give threat actors visibility and access to the organization's data.
As per one of the researches, 96.8% of code on the internet is OpenSource. If open-source libraries are not used properly or updated on time, it can make the applications severely vulnerable. With the talk, we will find the hidden threats with open source projects and try to see how we can find them before someone else finds them.