Open source components are the building blocks of modern applications. But what happens when these very components are weaponized, silently infiltrating your software supply chain?
This alarming scenario will be the focus of a keynote presentation at the upcoming All Day DevOps (ADDO) event, titled "The Invisible Threat: Open Source Malware is Silently Sabotaging Your Software."
Now in its ninth year, ADDO has grown into the largest DevOps conference in the world, attracting over 180,000 attendees annually.
This free, community-driven event runs continuously for 24 hours and offers hundreds of live sessions across a variety of topics, from DevOps and DevSecOps to cybersecurity.
One of this year's keynote speakers is Ilkka Turunen, the Field CTO at Sonatype, a pioneer in software supply chain management and security.
Turunen's keynote will shed light on a growing but underappreciated danger: open source malware.
Malicious actors are increasingly using open source components to infiltrate organizations, evading detection by masquerading as legitimate software. These weaponized components have the potential to wreak havoc, and traditional security solutions are not equipped to detect them.
In his presentation, Turunen will explore the tactics attackers use to insert malicious code into trusted software supply chains. He will explain why open source components, usually seen as safe, are becoming carriers of hidden threats. Most importantly, he will equip attendees with the knowledge and tools needed to protect their software supply chains and block these threats before they strike.
The rise of open source malware represents a new frontier in cybersecurity challenges, one that requires proactive and informed defenses. With open source adoption continuing to increase, the risks associated with malicious components are too significant to ignore.
Turunen's keynote at ADDO will provide actionable insights that can help you stay ahead of attackers, ensuring that your software remains secure. You'll walk away with a better understanding of how to detect, mitigate, and prevent open source malware from sabotaging your projects.
ADDO is not just an annual conference. It's a community. Join thousands of DevOps and DevSecOps professionals from around the world for this free, all-access event.
To learn more and register for All Day DevOps, visit the official ADDO website.