Safeguard
Tag

sbom

Safeguard articles tagged "sbom" — guides, analysis, and best practices for software supply chain and application security.

972 articles

Software Supply Chain Security

Software supply chain security for core banking systems

How core banking system supply chain security failures happen, what they cost, and how SBOMs and vendor risk monitoring keep core banking platforms safe.

Jan 5, 20267 min read
SBOM & Compliance

SBOM requirements for financial services under DORA

DORA now requires EU financial entities to track every software component down to the dependency level. Here's what the SBOM requirements actually mean.

Jan 5, 20267 min read
Vulnerability Analysis

npm registry package hijacking incidents (CVE-2015-8858 era)

CVE-2015-8858 anchors a broader era of npm registry package hijacking — tar-extraction path traversal, left-pad, and weak account security explained.

Jan 4, 20268 min read
SBOM & Compliance

Software bill of materials expectations from banking regu...

FFIEC and OCC examiners now expect banks to show software transparency. Here's what SBOM banking regulators actually ask for, and how to be ready before the next exam.

Jan 4, 20267 min read
Software Supply Chain Security

Securing the payment gateway software supply chain

A single compromised script or dependency can silently harvest card data at checkout. Here's what payment gateway supply chain security actually requires in 2026.

Jan 4, 20267 min read
Software Supply Chain Security

Software supply chain risk in cryptocurrency exchange and...

How compromised wallet SDKs, smart contract dependencies, and stale third-party audits are driving nine-figure crypto exchange breaches like Bybit and Ledger.

Jan 3, 20267 min read
Software Supply Chain Security

Software supply chain security for medical devices

How FDA premarket cybersecurity rules, medical device SBOMs, and firmware vulnerabilities like Ripple20 and SweynTooth are reshaping supply chain security for connected medical devices.

Jan 3, 20267 min read
SBOM

Medical device firmware SBOM and coordinated vulnerabilit...

How medical device firmware SBOMs, FDA Section 524B, ISO 81001-5-1, and coordinated vulnerability disclosure work together to secure connected IoMT devices.

Jan 1, 20267 min read
Buyer's Guides

Buyer's guide: selecting an SBOM tool for medical device ...

A buyer's guide comparing SBOM and SCA tools for medical device makers navigating FDA cybersecurity requirements, with honest vendor strengths and limitations.

Jan 1, 20268 min read
SBOM

SBOM adoption in underwriting and actuarial software

Insurers price risk with software built on unvetted open-source code. Here's how SBOM underwriting software closes that blind spot.

Dec 30, 20257 min read
Software Supply Chain Security

How to conduct a software supply chain risk assessment fo...

A step-by-step guide for insurance carriers to assess software supply chain risk in vendor portfolios, from SBOM collection to continuous monitoring.

Dec 30, 20258 min read
Software Supply Chain Security

Software supply chain security for connected and autonomo...

Modern cars run 100M+ lines of code across 150 ECUs from untracked suppliers. Here's why connected vehicle software supply chain security now demands real SBOMs, not compliance checkboxes.

Dec 30, 20257 min read
sbom (Page 58) — Safeguard Blog