BSIMM15 Report: AI Risks Skyrocket While Security Training Hits Rock Bottom

Organizations are doubling down on AI and software supply chain security, says the BSIMM15 report. Adversarial testing and software composition analysis have surged, but security awareness training lags behind. With AI adoption soaring, prioritizing security is both critical and challenging. The report offers a roadmap for navigating these evolving threats.

3P
Published: January 14, 2025 5:23 pmAdded: January 14, 2025 at 9:59 amAssembled by: The Editor
Pro Dashboard

Hot Take:

Looks like software security is the new trendy dance everyone’s trying to master, but some organizations might be missing a few steps. While others are busy perfecting their AI tango and supply chain cha-cha, security awareness training seems to be doing the limbo—how low can it go?

Key Points:

  • The number of companies conducting adversarial testing has doubled since last year.
  • Software composition analysis on code repositories has increased by 67%.
  • There’s a 30% rise in organizations exploring new attack methods through research groups.
  • The generation of Software Bills of Materials (SBOMs) has increased by 22%.
  • Security awareness training has declined to its lowest rate since 2008.

Membership Required

 You must be a member to access this content.

View Membership Levels
Already a member? Log in here
The Nimble Nerd
powered by the NSA, er,  GDPR Cookie Compliance
Confessional Booth of Our Digital Sins

Okay, deep breath, let's get this over with. In the grand act of digital self-sabotage, we've littered this site with cookies. Yep, we did that. Why? So your highness can have a 'premium' experience or whatever. These traitorous cookies hide in your browser, eagerly waiting to welcome you back like a guilty dog that's just chewed your favorite shoe. And, if that's not enough, they also tattle on which parts of our sad little corner of the web you obsess over. Feels dirty, doesn't it?