Palo Alto Networks, a global cybersecurity leader launched Prisma Cloud Supply Chain Security. It provides a comprehensive view of potential vulnerabilities or misconfigurations that occur in the software supply chain, which gives enterprises the leverage to easily trace and remedy them. These security issues could allow attackers to enter networks, disseminate harmful payloads throughout an organization’s software, and access sensitive data if not swiftly rectified or, better still, avoided when coding.
Prisma Cloud Supply Chain Security enables the security of the interrelated components that make up and supply cloud-native apps by using a full stack, full lifecycle approach. It can aid in the detection of vulnerabilities and misconfigurations in code, such as open-source packages, infrastructure as code (IaC) files, and delivery pipelines, such as VCS and CI pipeline setups.
Senior Vice President, Prisma Cloud products at Palo Alto Networks, Ankur Shah, stated “Every day new vulnerabilities are found in open source and other software components that have previously been integrated into the organization’s software code. Without the proper tools, it is very difficult for organizations to quickly spot where they have used the unpatched versions of these components. Prisma Cloud is designed to help protect organizations from code to cloud; and now that customers can visualize their software supply chain, it’s easier to spot, prioritize, and remediate security weaknesses at the onset of development and during delivery pipelines.”
Multiple providers of code or cloud resource layer only give vulnerability and misconfiguration data. Prisma Cloud, already a leader in cloud-native security and the most comprehensive Cloud-Native Application Protection Platform (CNAPP), now offers Supply Chain Security, which provides not only full lifecycle visibility and protection but also the context of where a vulnerability fits into a cloud architecture’s layers.