CERT-In-Guidelines-Blog_Thumbnail

JFrog Simplifies Compliance with India’s new CERT SBOM Guidelines

Overview The Indian Computer Emergency Response Team (CERT-In) is the national agency responsible for addressing cybersecurity incidents in India. Established in 2004 and operating under the Ministry of Electronics and Information Technology (MeitY), CERT-In is dedicated to enhancing the security of India’s digital infrastructure. The organization plays a vital role in preventing, detecting, and responding …

Evil-Proxy-Thumbnail-203x148-1.png

Everything You Need to Know About Evil Proxy Attacks and MFA Bypass

Attackers use a malicious proxy server to intercept, monitor, and manipulate communication between a client and a legitimate server, often to steal credentials, session tokens, or other sensitive information. Some services provide “Phishing-as-a-Service” (PhaaS), offering attackers ready-made tools and infrastructure to conduct phishing campaigns. These services simplify the process of deceiving individuals into providing sensitive …

JFrog ISO-27001-Certification-Blog_Thumbnail

JFrog Achieves ISO/IEC 27001:2022

As part of JFrog’s mission to continuously develop and uphold the highest industry standards in cyber security, we are excited to announce that we have successfully upgraded our ISO certification to the latest version, ISO/IEC 27001:2022. This achievement reinforces our dedication to protecting your data with the high standards of cyber and information security. Understanding …

EU-NIS2-Compliance-Blog_Thumbnail.png

NIS2 Compliance in 2025: Compliance Doesn’t Have to Mean Complexity

The Network and Information Systems Directive 2 (NIS2) is the European Union’s effort to fortify cybersecurity across critical industries and services. Building on the original NIS Directive, NIS2 has broadened its scope, introduced stricter requirements, and placed greater emphasis on supply chain security. Now that the October 2024 transposition deadline has passed, organizations must focus …

Best-Security-Research-2024-Blog_Thumbnail.png

Top JFrog Security Research Discoveries of 2024

In our previous round-up of security research for 2023,  we mentioned our surprise at the large volume of 29,000 vulnerabilities that were reported two years ago.  But that didn’t prepare us for the astounding 40% increase, reported by Cyber Press, resulting in over 40,000 CVEs that were published over the past year in 2024. That …

Ensuring-Release-Integrity-Seamlessly_V3_Blog_Thumbnail.png

The Power of Evidence Collection and Release Lifecycle Management

The speed of today’s software development lifecycle is only getting faster. However, the complexity of today’s pipelines make it hard to track and manage the processes software releases must go through. With increasing regulatory pressures, ensuring and proving your software has gone through the necessary quality controls is no longer nice to have – it …

MLOps Your Way with the JFrog Platform

Just like in traditional software development, creating AI applications isn’t a one size fits all approach. However, many of the challenges and concerns facing AI/ML development teams share common threads – difficulties getting models to production, tangled infrastructure, data quality, security issues, and so on. Regardless of how you build it, to accelerate production-ready AI, …

RLM-Evidence-Collection_Blog_Thumbnail.png

Now Available: Evidence Collection with JFrog

There is an increasing need for traceability and attestation of the actions taken as software moves across the SDLC. Emerging regulations and policies around secure software development are rapidly evolving, and it’s important to stay ahead of the changing landscape. Some organizations have taken a proactive approach with home-grown solutions or manual processes, but despite …

Cloud Innovation - Blog_Thumbnail

JFrog Cloud Native Innovation – Availability, Security Performance and Efficiency at Scale

JFrog uses open source tools such as Kubernetes, Kubernetes Event-driven Autoscaling (KEDA), and Prometheus to develop its cloud development infrastructure and ensure tight integration with the three leading cloud providers AWS, GCP, and Azure. Let’s explore how JFrog cloud deployments leverage our cloud-native architecture to provide enhanced security and management capabilities for DevOps while ensuring …