[Asia Economy Reporter Hyungsoo Park] Sparrow announced on the 7th that it will strengthen its integrated consulting services to prevent software (SW) supply chain threats.
In addition to the previously provided ▲source code security vulnerability checks before and after SW development ▲security vulnerability checks during the testing process after SW development, Sparrow has added security vulnerability checks for open-source libraries included in the SW.
With the utilization rate of open-source SW reaching 74.8% among companies with more than 10 employees, demand for integrated management of open-source management and security vulnerabilities is increasing. If malware is embedded in widely used open-source libraries and distributed through the SW supply chain, it can cause damage to an unspecified number of users and servers.
Sparrow has further strengthened its integrated consulting services to prevent widespread supply chain attacks. SW suppliers can check vulnerabilities in developed SW and open-source licenses before product release or distribution. They can systematically manage open-source information. Based on diagnoses from professional consultants, they can also receive integrated diagnostic reports.
Jilsu Jang, CEO of Sparrow, said, "Software supply chain attacks at home and abroad are evolving in various forms," adding, "Attacks using open source have become one of the serious cyber threats." He continued, "Through Sparrow's integrated consulting business, we hope that software suppliers will be practically helped to establish cyber security strategies and strengthen security at each stage of development, design, implementation, and distribution."
Sparrow provides solutions such as Sparrow SAST, a source code security vulnerability checking solution, and Sparrow DAST, a web application vulnerability analysis solution, as part of its integrated consulting business to prevent supply chain threats. Recently, Sparrow has added Sparrow SCA, an open-source management tool that received GS Certification Grade 1, and is conducting various promotions until January 31 of next year.
© The Asia Business Daily(www.asiae.co.kr). All rights reserved.
