Cyber Tuesday
Hosted by Bristol & Bath Cyber
Details
A supply chain cybersecurity attack refers to a malicious activity that targets the systems, networks, or software of an organization by exploiting vulnerabilities within its supply chain. Estimates put the increase in supply chain cyber attacks over the last three years at over 700%, so this month we're going to be exploring supply chain security.
Our guest speaker for June is Dr Adam Gorine. Adam is a Senior Lecturer in Cyber Security at UWE Bristol.
He will be discussing his research into Static Analysis of Security Issues of the Python Packages Ecosystem.
Python is considered the most popular programming language and offers its own ecosystem for archiving and maintaining open-source software packages. This system is called the python package index (PyPI), the repository of this programming language. Unfortunately, one-third of these software packages have vulnerabilities that allow attackers to execute code automatically when a vulnerable or malicious package is installed. His paper contributes to large-scale empirical studies investigating security issues in the python ecosystem by evaluating package vulnerabilities. These provide a series of implications that can help the security of software ecosystems by improving the process of discovering, fixing, and managing package vulnerabilities. The vulnerable dataset is generated using the NVD, the national vulnerability database, and the Snyk vulnerability dataset. In addition, they evaluated 807 vulnerability reports in the NVD and 3900 publicly known security vulnerabilities in Python Package Manager (pip) from the Snyk database from 2002 to 2022. As a result, many Python vulnerabilities appear in high severity, followed by medium severity. The most problematic areas have been improper input validation and denial of service attacks.
THIS EVENT IS IN BRISTOL - Runway East, Bristol Bridge, BS1 6AA ///maker.metals.acute
Bristol & Bath Cyber Cluster has another fascinating networking event for you
6:00pm - Arrivals and networking
6:30pm - Welcome to Cyber Tuesday, Intro followed by presentation and Q&A from our speakers
7:00pm - Networking and refreshments
8:30pm - Close
Sponsored by:
InfoSec People - The experts in cyber and technology recruitment
Higos - We Love Different
Cryptegridy Blockchain Security - Data Driven By Facts!
Powered by: techSPARK uk - Dedicated to strengthening the digital cluster in the West
Supported by: Runway East - Great teams need a happy home
Register now!