News & Analysis as of June 8, 2025

Cybersecurity › Software

+ Follow

Follow this channel for advisories on one of the biggest threats to businesses today. Read a morning brief of fresh guidance and commentary by leading lawyers on security, privacy, risk... more +

Follow this channel for advisories on one of the biggest threats to businesses today. Read a morning brief of fresh guidance and commentary by leading lawyers on security, privacy, risk management, global regulations, data protection, leaks, hacking, cyber insurance, compliance, HIPAA, and every other aspect of cybersecurity of import to corporate readers right now. less -

Google Releases June Security Bulletin for Android Devices to Fix Vulnerabilities

Robinson+Cole Data Privacy + Security Insider on 6/6/2025

Google recently issued its June Android Security Bulletin that is designed to patch 34 vulnerabilities, all of which Google designates as high-severity defects. The most serious flaw the patch is designed to fix in the...more

Threat actors increasingly introducing malicious code into open source packages

Hogan Lovells on 6/4/2025

The risks associated with leveraging open source libraries, and the review needed, are increasing. In the first half of 2025, cybersecurity researchers observed a sharp rise in the incidence of malicious code embedded in...more

Australia’s Model Clauses provide framework for AI procurement

Hogan Lovells on 6/4/2025

On 17 March 2025, the Australian Government published Model Clauses to help government purchasers manage vendor relationships when procuring AI technology based systems and services. The Model Clauses cover issues relevant to...more

European Vulnerability Database Published by the European Union Agency for Cybersecurity

Alston & Bird on 6/2/2025

The European Union Agency for Cybersecurity (ENISA) has launched the European Vulnerability Database (EUVD), a tool designed to enhance digital security across the EU. The EUVD is available here....more

Privacy Tip #445 – Apple Users: Update to iOS 18.5

Robinson+Cole Data Privacy + Security Insider on 5/30/2025

Never underestimate an operating system update from any mobile phone manufacturer. This week, Apple issued iOS 18.5 which provides enhancements to the user experience, but also fixes bugs and flaws....more

The Latest Trends in Moving ERP Systems to the Cloud

Morgan Lewis - Tech & Sourcing on 5/29/2025

According to Forbes, “in 2025, the landscape of enterprise resource planning (ERP) is set for a thrilling transformation,” with a shift toward cloud-native ERP solutions at the top of the list....more

A Call to Do Better at Vendor Security Risks

NAVEX on 5/21/2025

Technology vendors everywhere want to serve big Wall Street banks, so when one of those banks talks about risks they see in their software supply chain, compliance and audit professionals should listen – which brings us to an...more

UK Publishes Software Security Code

Alston & Bird on 5/16/2025

Cyber security supply chain risks are growing, and attacks on vendors and other third parties cause severe disruption to businesses. For example, in recent years we have seen many incidents that have involved threat actors...more

EU Cyber Resilience Act: How to Prepare Now

Mitratech Holdings, Inc on 5/16/2025

The EU Cyber Resilience Act (CRA), adopted by the European Parliament in 2024, marks a major milestone in European cybersecurity legislation. As the first EU-wide law focused on the cybersecurity of digital products, it...more

Commercially Connected Shorts - 14 May 2025

Eversheds Sutherland (US) LLP on 5/15/2025

Welcome to Commercially Connected shorts, our weekly bitesize newsletter summarising the latest updates in UK commercial law. This week we look at: - UK-US and UK-India trade deals - Eversheds Sutherland’s global supply...more

First of its kind: EU and Singapore enter into digital trade agreement

Hogan Lovells on 5/15/2025

On May 7th 2025 the EU and Singapore signed the Digital Trade Agreement (DTA). Following the signing of the EU-Singapore Free Trade Agreement in 2019, and building on the EU-Singapore Digital Partnership and Digital Trade...more

No Password Required: CEO of HACKERverse.ai, Disruptor of Cybersecurity Sales and Most Other Things

Carlton Fields on 5/13/2025

On this episode, we sit down with Mariana Padilla, CEO and co-founder of HACKERverse.ai — an AI-driven platform transforming how cybersecurity solutions are tested and purchased. From her early days in education and...more

SAP NetWeaver Visual Composer Requires Urgent Patch

Robinson+Cole Data Privacy + Security Insider on 5/3/2025

SAP Netweaver Visual Composer users are urged to patch a critical vulnerability that attackers are actively exploiting. According to ReliaQuest, which detected the vulnerability, the attacks allow full system compromise...more

SWIFT to Launch May 1: DOD Fast Tracks Software Deployment Opening New Doors for Defense Contractors

PilieroMazza PLLC on 5/2/2025

In a decisive move to stay ahead in an era of rapidly evolving digital threats, the Department of Defense (DOD) is accelerating its push for software modernization. The upcoming launch of the Software Fast Track (SWIFT)...more

The EU’s Cyber Resilience Act: New Cybersecurity Requirements for Connected Products and Software

Pillsbury Winthrop Shaw Pittman LLP on 4/16/2025

The CRA will affect a broad range of digital products placed on the EU market (including by those based outside the EU), including connected hardware/devices, software and remote data processing solutions. The EU has adopted...more

WhatsApp Patches Vulnerability That Facilitates Remote Code Execution

Robinson+Cole Data Privacy + Security Insider on 4/12/2025

WhatsApp users should update the application for vulnerability CVE-2025-30401, which Meta recently patched when WhatsApp was released for Windows version 2.2450.6....more

CISA Issues Malware Analysis Report on RESURGE Malware

Robinson+Cole Data Privacy + Security Insider on 4/4/2025

On March 28, 2025, the Cybersecurity and Infrastructure Security Agency (CISA) released a Malware Analysis Report (MAR) on RESURGE malware, which is associated with the product Ivanti Connect Secure....more

FedRAMP 20x – Major Overhaul Announced to Streamline the Security Authorization Process for Government Cloud Offerings

Sheppard Mullin Richter & Hampton LLP on 4/3/2025

On March 24, 2025, the Federal Risk and Authorization Management Program (“FedRAMP”) announced a major overhaul of the program, which is being called “FedRAMP 20x.” The FedRAMP 20x announcement stated there are no immediate...more

How Over-engineered Security Stacks Are Killing Agility—And What to Do About It

Accelerynt, Inc. on 4/3/2025

Tool sprawl is paralyzing enterprise security teams. Learn how to shift from fragile, over-engineered stacks to agile security architectures that accelerate progress....more

DOD Mandates Use of Software Acquisition Pathway for Software Development Procurements

Wiley Rein LLP on 3/26/2025

WHAT: Department of Defense (DOD) Secretary Pete Hegseth issued a memorandum titled “Directing Modern Software Acquisition to Maximize Lethality” that is intended to reform DOD’s procurement involving software development....more

Crossing Administrations: The Focus on Federal Cybersecurity Continues

Goodwin on 3/20/2025

Federal contractors, including defense contractors, should prepare for the emergence of new requirements in the coming months that are designed to strengthen software supply chain security, impose more stringent cybersecurity...more

Privacy Tip #434 – Use of GenAI Tools Escaping Corporate Policies

Robinson+Cole Data Privacy + Security Insider on 3/7/2025

According to a new LayerX report, most users are logging into GenAI tools through personal accounts that are not supported or tracked by an organization’s single sign on policy. These logins to AI SaaS applications are...more

[Podcast] Alumni @ RopesTalk: DeepSeek Deep Dive with Dr. Vasanth Sarathy, Tufts University

Ropes & Gray LLP on 2/28/2025

On this special edition of Ropes & Gray’s Alumni @ RopesTalk podcast series, technology and IP transactions partner Regina Sam Penti is joined by Dr. Vasanth Sarathy, a professor of computer science at Tufts University and a...more

Top 10 WordPress Website Myths…DEBUNKED!

Legal Internet Solutions Inc. on 2/26/2025

There are several common misconceptions about open-source website content management systems (CMS) that often lead law firms and businesses to hesitate before adopting them...more

Joint Cybersecurity Advisory Released on Ghost (Cring) Ransomware

Robinson+Cole Data Privacy + Security Insider on 2/22/2025

The Cybersecurity & Infrastructure Security Agency, the Federal Bureau of Investigation, and the Multi-State Information Sharing and Analysis Center released an advisory on February 19, 2025, providing information on Ghost...more

363 Results

/

View per page

Page: of 15

Next »