3rd Party Risk Management , Application Security , Business Continuity Management / Disaster Recovery

Why Zero-Day Attacks on Open-Source Libraries Are Surging

Contrast Security CPO Steve Wilson on Why the Log4j Hack Is a Sign of Things to Come
Steve Wilson, chief product officer, Contrast Security

The discovery and subsequent exploitation of a critical zero-day vulnerability in Apache's Log4j open-source library has highlighted the importance of code security in today's threat landscape, says Steve Wilson, security chief product officer at Contrast.

See Also: Ransomware Response Essential: Fixing Initial Access Vector

In a video interview with Information Security Media Group at RSA Conference 2022, Wilson also discusses:

  • Why zero-day attacks on open-source libraries are increasing;
  • Why code security is so important in today's threat landscape;
  • How CISOs and engineering leaders can better secure applications.

Wilson is responsible for engineering, product management and product design for all Contrast Security products. He has more than 25 years of experience developing and marketing products at multi-billion-dollar technology companies such as Citrix, Oracle and Sun Microsystems. Wilson previously served as vice president of product management for Citrix Cloud, where he led the transformation of Citrix products from traditional on-premises to SaaS. At Oracle, he led core engineering for a billion-dollar product line of systems management software. At Sun Microsystems, Wilson was an early member of the team that developed the Java computer programming system, the most widely used set of software development tools in history.


About the Author

Michael Novinson

Michael Novinson

Managing Editor, Business, ISMG

Novinson is responsible for covering the vendor and technology landscape. Prior to joining ISMG, he spent four and a half years covering all the major cybersecurity vendors at CRN, with a focus on their programs and offerings for IT service providers. He was recognized for his breaking news coverage of the August 2019 coordinated ransomware attack against local governments in Texas as well as for his continued reporting around the SolarWinds hack in late 2020 and early 2021.




Around the Network

Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing inforisktoday.asia, you agree to our use of cookies.