IT Brief Canada - Technology news for CIOs & IT decision-makers
Canada

Supply Chain Security Stories

Global Stories

Supply Chain Security stories

Checkmarx launches AI inventory for code governance
Application Security

Checkmarx launches AI inventory for code governance

Enterprises can now trace hidden AI components in code to meet growing audit and compliance demands as production use outpaces governance.

By Joseph Gabriel Lagonsin 4 min read Yesterday
Secure Code Warrior launches AI adoption model for CISOs
Digital Transformation

Secure Code Warrior launches AI adoption model for CISOs

Security chiefs are being given a framework to curb risks as AI spreads through coding, no-code tools and autonomous software workflows.

By Joseph Gabriel Lagonsin 4 min read Yesterday
Linux Foundation launches Akrites to fix open source flaws
Security Operations Centres

Linux Foundation launches Akrites to fix open source flaws

Backed by Amazon, Google and Microsoft, the scheme aims to speed fixes for flaws that could ripple through banks, hospitals and power grids.

By Joseph Gabriel Lagonsin 5 min read Yesterday
NCC Group joins OpenAI Daybreak cyber partner programme
Network Infrastructure

NCC Group joins OpenAI Daybreak cyber partner programme

The tie-up gives NCC Group early access to GPT-5.5-Cyber, as OpenAI seeks trusted testers for defensive uses of its cyber tools.

By Joseph Gabriel Lagonsin 4 min read 2 days ago
Checkmarx named leader in Gartner supply chain quadrant
Application Security

Checkmarx named leader in Gartner supply chain quadrant

Enterprise buyers are treating software supply chain security as a standalone priority as Gartner creates a dedicated Magic Quadrant for the category.

By Joseph Gabriel Lagonsin 3 min read 2 days ago
DigiCert launches trust checks for Google Cloud workloads
Data Protection

DigiCert launches trust checks for Google Cloud workloads

Organisations running sensitive workloads on Google Cloud can now get independent verification that systems and data have not been altered.

By Joseph Gabriel Lagonsin 3 min read 3 days ago
Chainguard named Gartner leader in software supply security
Cloud Security

Chainguard named Gartner leader in software supply security

The recognition underlines rising demand for tools that secure software builds before attackers can exploit open source dependencies and pipelines.

By Mark Tarre 4 min read 3 days ago
Secure Code Warrior launches AI adoption model for CISOs
Robotics

Secure Code Warrior launches AI adoption model for CISOs

Growing AI use in coding is widening software risk, forcing security leaders to match training and controls to each adoption stage.

By Sean Mitchell 4 min read 3 days ago
Explainer: How loop engineering is changing coding
DevOps

Explainer: How loop engineering is changing coding

By focusing on evidence and small reversible changes, loop engineering could curb costly AI coding mistakes before they reach production.

By Mark Tarre 8 min read 3 days ago
Exabeam launches open-source Praxen to verify AI agents
Application Security

Exabeam launches open-source Praxen to verify AI agents

Businesses adopting autonomous AI agents face a new pre-deployment security check as Exabeam's Praxen tests whether permissions match duties.

By Mark Tarre 4 min read 3 days ago
IBM joins OpenAI cyber programme with app security tool
Cloud Security

IBM joins OpenAI cyber programme with app security tool

Enterprise security teams gain a new AI-assisted way to spot exploitable code flaws, as IBM widens its cyber work with OpenAI.

By Sean Mitchell 4 min read 4 days ago
Finite State to spotlight automotive supply chain security
Cloud Security

Finite State to spotlight automotive supply chain security

Carmakers face tougher proof requirements as software-heavy vehicles multiply vulnerabilities across suppliers, apps and cloud systems.

By Joseph Gabriel Lagonsin 4 min read 4 days ago
JFrog named leader in Gartner's software security quadrant
Hybrid Cloud

JFrog named leader in Gartner's software security quadrant

The recognition comes as firms scramble to secure software pipelines, open-source code and AI assets against rising supply chain attacks.

By Mark Tarre 4 min read 4 days ago
OpenAI expands Daybreak with patching tools & partners
Network Security

OpenAI expands Daybreak with patching tools & partners

The move aims to help defenders turn faster vulnerability discovery into working fixes, as OpenAI broadens access to its cyber tools and partners.

By Sean Mitchell 5 min read 4 days ago

Stories from Other Regions

Supply Chain Security stories

US defence suppliers lag on cybersecurity readiness
Supply Chain

US defence suppliers lag on cybersecurity readiness

Many defence contractors remain exposed as only 13% use software bills of materials and just 29% join industry threat-sharing groups.

By Mark Tarre 4 min read Today
Internal AI systems emerge as top breach risk: report
Ransomware

Internal AI systems emerge as top breach risk: report

Security teams are struggling to spot intrusions until after data is stolen, with 85% of leaders reporting AI-linked incidents or near misses.

By Sean Mitchell 4 min read Today
DevOps breaches hit tech firms in trust chain attacks
Malware

DevOps breaches hit tech firms in trust chain attacks

Tech and software groups are most at risk as breaches, supplier access and stale credentials let attackers reach source code and customer data.

By Mark Tarre 4 min read Yesterday
Federal cybersecurity report flags supply chain gaps
Data Protection

Federal cybersecurity report flags supply chain gaps

Many defence suppliers still lack visibility into software risks, as more than a quarter reported a supply chain compromise last year.

By Mark Tarre 4 min read Yesterday