Supply chain risks are becoming an ever larger problem for businesses
The increasing complexity of IT environments is leading to more hidden cyber threats. The risk of cyberattacks and data breaches through the software supply chain is hard to ward off, according to research by JFrog.
To point out how cluttered corporate IT infrastructures can be today, JFrog cite... Read more
When is a critical vulnerability actually dangerous?
Dozens of new vulnerabilities surface every day. These vary widely, with CVE scores ranging from 0 to 10. The higher the score, the more alarming the messaging. Interestingly, the most dangerous cyber threats quite often don't achieve a high score on this scale. As an organization, how do you know ... Read more
Attackers target .NET developers with malicious NuGet packages
Developers are being attacked by threat actors using "sophisticated typosquatting techniques".
Threat actors are targeting and infecting .NET developers with cryptocurrency stealers, according to a report in BleepingComputer.
JFrog security researchers Natan Nehorai and Brian Moussalli detai... Read more
Researchers find DoS vulnerabilities in Rust Hyper
The JFrog Security Research team has discovered and disclosed multiple DoS (Denial of Service) vulnerabilities in popular Rust projects such as Axum, Salvo and conduit-hyper.
In a recent blog post, JFrog says that all vulnerabilities stem from the same root cause, namely developers failing to se... Read more
JFrog releases promising quarterly results
DevOps vendor JFrog announced its first quarter's financial report. Revenue grew to 64 million dollars, up 41 percent from last year.
JFrog's shares skyrocketed following the announcement. Shlomi Haim, the CEO and co-founder of JFrog, said that they had signified a great fiscal start to 2022 wi... Read more
JFrog extends support for Terraform
New support structure helps developers complete their cloud Kubernetes registry.
This week, JFrog announced native support for Terraform files, allowing users to maintain consistent workflows and processes across multiple cloud platforms. Terraform comes as an Infrastructure-as-Code (IaC) techno... Read more
Vulnerability in Apache Cassandra opens door for remote code execution
Security specialist JFrog warns of a bug in Apache Cassandra's Nashorn engine that allows remote code execution in affected systems.
Apache Cassandra is an open-source distributed NoSQL database management system for handling large amounts of data on standard servers. The system, originally deve... Read more
JFrog acquires Vdoo to secure the complete development life cycle
The first company to develop a binary code management repository for developers, JFrog, announced that it is acquiring Vdoo, a Tel Aviv-based company. The DevOps platform maker will pay for the acquisition using a cash and stocks deal valued at around $300 million.
Vdoo is known for making an in... Read more
Snowflake leads a list of high-profile tech companies in filing IPOs
A list of high-profile software companies filed to go public on Monday. They include big names like Snowflake, Asana, Unity Software, JFrog, and Sumo Logic. This selection of Bay Area software companies with multi-billion-dollar valuations, all rushed in a move signifying to the markets that they a... Read more