Hi everyone! If you’re working in AppSec, DevSecOps, or compliance and wondering how to prove your security controls work, this talk is for you.

We’re hosting a free, live SafeDev Talk on how to build a real audit-ready AppSec aligned with ISO, NIST, CRA, and more. No fluff, just practical insights from security leaders working across cloud, compliance, and engineering.

🗓️ July 23 | 🕒 17:00 CEST / 11:00 EDT

👉 Click here to register

Hope to see you there !

SafeDev Talk: AI-Powered DevSecOps – Orchestrating Security at Cloud Scale

Join us for an insightful discussion on how AI is revolutionizing DevSecOps, enhancing security across the Software Development Life Cycle (SDLC).

Don't miss this opportunity to understand how AI is reshaping the future of DevSecOps https://www.linkedin.com/events/7335954209948819457SafeDev Talk on AI-Powered DevSecOps

Take a look at an in-depth analysis of the current trends and challenges in securing software supply chains. It highlights key findings from extensive research, offering actionable insights into the latest threat landscapes, vulnerabilities, and best practices for mitigating risks. The document includes expert recommendations on adopting secure development frameworks, enhancing open-source software security, and leveraging automation for efficient vulnerability management. It is a comprehensive resource for organizations aiming to strengthen their software supply chain security strategies and stay ahead in the evolving cybersecurity landscape.

This blog post emphasizes the critical importance of securing software supply chains in modern development practices. It highlights the increasing frequency of software supply chain attacks, occurring almost every two days, and underscores the necessity for robust risk management strategies. The article provides insights from cybersecurity experts featured in Xygeni's SafeDev Talks, discussing specific tools and techniques to enhance software supply chain security and prevent attacks. Key topics includeintegratingf security at every stage of the software development lifecycle, best practices for risk control, and the significance of automation in application security.

𝐑𝐞𝐠𝐢𝐬𝐭𝐞𝐫 𝐍𝐨𝐰 𝐟𝐨𝐫 𝐭𝐡𝐞 𝐋𝐚𝐬𝐭 𝐒𝐚𝐟𝐞𝐃𝐞𝐯 𝐓𝐚𝐥𝐤 𝐨𝐟 𝐭𝐡𝐞 𝐘𝐞𝐚𝐫: 𝐒𝐨𝐟𝐭𝐰𝐚𝐫𝐞 𝐒𝐮𝐩𝐩𝐥𝐲 𝐂𝐡𝐚𝐢𝐧 𝐒𝐞𝐜𝐮𝐫𝐢𝐭𝐲 𝟐𝟎𝟐𝟒 𝐖𝐫𝐚𝐩-𝐔𝐩!
Join us for a special episode that reunites the expert speakers who started our year with insights on Software Supply Chain Security. Together, we’ll review the key trends and lessons of 2024 and explore what lies ahead for 2025.

𝐑𝐞𝐠𝐢𝐬𝐭𝐞𝐫 𝐍𝐨𝐰 𝐟𝐨𝐫 𝐭𝐡𝐞 𝐋𝐚𝐬𝐭 𝐒𝐚𝐟𝐞𝐃𝐞𝐯 𝐓𝐚𝐥𝐤 𝐨𝐟 𝐭𝐡𝐞 𝐘𝐞𝐚𝐫: 𝐒𝐨𝐟𝐭𝐰𝐚𝐫𝐞 𝐒𝐮𝐩𝐩𝐥𝐲 𝐂𝐡𝐚𝐢𝐧 𝐒𝐞𝐜𝐮𝐫𝐢𝐭𝐲 𝟐𝟎𝟐𝟒 𝐖𝐫𝐚𝐩-𝐔𝐩!
Join us for a special episode that reunites the expert speakers who started our year with insights on Software Supply Chain Security. Together, we’ll review the key trends and lessons of 2024 and explore what lies ahead for 2025.

We are thrilled to share our latest eBook that provides expert guidance on implementing effective Software Composition Analysis (SCA) to tackle vulnerabilities, ensure compliance, and protect against emerging threats in your open-source dependencies!

In this blog post, Xygeni discusses about the backdoor discovery in the xz compression utility’s liblzma library. The backdoor, targeting SSH servers, was introduced through obfuscated code modifications and affected certain Linux environments. It used advanced obfuscation techniques to hide in pre-release versions, activating under specific conditions to enable remote command execution. Read all about it!

𝐑𝐞𝐠𝐢𝐬𝐭𝐞𝐫 𝐍𝐨𝐰 to our next episode of SafeDev Talks and 𝐭𝐮𝐫𝐧 𝐒𝐂𝐀 𝐜𝐡𝐚𝐥𝐥𝐞𝐧𝐠𝐞𝐬 𝐢𝐧𝐭𝐨 𝐬𝐞𝐜𝐮𝐫𝐢𝐭𝐲 𝐰𝐢𝐧𝐬! Don’t miss this opportunity to learn from top experts how to overcome false positives, boost visibility, prioritize real risks, and automate remediation, transforming SCA pain points into actionable security gains.