Trend Micro and Snyk have announced a jointly developed SaaS solution called 'Trend Micro Cloud One - Open Source Security by Snyk'.
This industry-first solution, which targets security operations (SecOps) teams, provides real-time insight into open source vulnerabilities for enhanced risk management.
"Open source software is used in nearly all organizations. This introduces risks from readily exploitable vulnerabilities; an expanded attack surface through which malware and malicious code can gain access, compromising proprietary code and infrastructure; and legal and intellectual property exposures," stated Gartner in its market guide for software composition analysis.
Snyk stated the new Trend Micro Cloud One - Open Source Security by Snyk will help resolve the long-standing cultural barriers between security and development teams with a centralized solution that delivers unique visibility early in the software development lifecycle, further protecting the application stacks.
The new Trend Micro-Snyk SaaS proactively identifies vulnerabilities in licensing, so security teams can better monitor and prioritize risks within DevOps projects. It also corporates an integrated automation feature that helps security teams spot indirect dependencies in their applications.
Over 650 hours of development time can be saved per application through increased automation, according to Trend Micro.
RELATED RESOURCE
Address multi-cloud configuration risks
Cloud security challenges and how to overcome them
Trend Micro Cloud One - Open Source Security by Snyk is available as part of the Cloud One platform on the AWS Marketplace. Organizations have the option to integrate the service with standard source code platforms, including GitHub, GitLab, BitBucket, Jenkins, and more.
"Together Snyk and Trend Micro are investing in the future of the cybersecurity industry, where security and development teams effectively work together to make their organizations safer," said Geva Solomonovich, global alliances CTO at Snyk.
Solomonovich continued, "Adding Snyk's developer-first security technology to Trend Micro's Cloud One allows more customers to tackle open source risk on a single platform, minimizing the need to manage multiple vendors and tools. We look forward to our continued collaboration with Trend Micro to foster more innovative, effective ways to solve key security concerns for our customers."
-
AWS CEO Matt Garman isn’t convinced AI spells the end of the software industryNews Software stocks have taken a beating in recent weeks, but AWS CEO Matt Garman has joined Nvidia's Jensen Huang and Databricks CEO Ali Ghodsi in pouring cold water on the AI-fueled hysteria.
-
Deepfake business risks are growingIn-depth As the risk of being targeted by deepfakes increases, what should businesses be looking out for?
-
CVEs are set to top 50,000 this year, marking a record high – here’s how CISOs and security teams can prepare for a looming onslaughtNews While the CVE figures might be daunting, they won't all be relevant to your organization
-
Microsoft patches six zero-days targeting Windows, Word, and more – here’s what you need to knowNews Patch Tuesday update targets large number of vulnerabilities already being used by attackers
-
Experts welcome EU-led alternative to MITRE's vulnerability tracking schemeNews The EU-led framework will reduce reliance on US-based MITRE vulnerability reporting database
-
Veeam patches Backup & Replication vulnerabilities, urges users to updateNews The vulnerabilities affect Veeam Backup & Replication 13.0.1.180 and all earlier version 13 builds – but not previous versions.
-
Two Fortinet vulnerabilities are being exploited in the wild – patch nowNews Arctic Wolf and Rapid7 said security teams should act immediately to mitigate the Fortinet vulnerabilities
-
Everything you need to know about Google and Apple’s emergency zero-day patchesNews A serious zero-day bug was spotted in Chrome systems that impacts Apple users too, forcing both companies to issue emergency patches
-
Trend Micro issues warning over rise of 'vibe crime' as cyber criminals turn to agentic AI to automate attacksNews Trend Micro is warning of a boom in 'vibe crime' - the use of agentic AI to support fully-automated cyber criminal operations and accelerate attacks.
-
Security experts claim the CVE Program isn’t up to scratch anymore — inaccurate scores and lengthy delays mean the system needs updatedNews CVE data is vital in combating emerging threats, yet inaccurate ratings and lengthy wait times are placing enterprises at risk
