Shubho's Blog

The emergence of Generative AI (GenAI) with Large Language Models (LLM) has unlocked promises of revolutionary possibilities driving newer business opportunities and customer experiences. It is not surprising that leading technology innovators like Microsoft, Google, Meta, NVIDIA, IBM, Databricks, Snowflake, and many others are investing heavily in LLMs to create business value for the next decade. If GenAI delivers in line with the early signs then the scale of economic impact will be huge.  McKinsey Global Institute estimates that generative AI will add between $2.6 and $4.4 trillion in annual value to the global economy, increasing the economic impact of Artificial Intelligence as a whole by 15% to 40% . In this article, I will focus on the implications of GenAI on data security, privacy, and governance, and discuss how organizations can adapt to ensure a secure and responsible future. Implications of GenAI on data security Data is critical to every business and it makes each en...

In my previous blog, I talked about what software supply chain attack is all about. It occurs when a threat actor infiltrates a network and employs malicious code in the software before the publisher sends it to their customers and then it compromises the customer’s systems. Such attacks affect all users of the compromised software and can have widespread consequences for organizations and their infrastructure and data. Traditionally, organizations developed applications in-house and this enabled developers to gain control over the entire codebase. However, this model cannot meet today’s time-to-market demands. As the expectations and pace increase, it’s impossible to meet the demand with home grown software. So, there is a need for open source software contributed by software professionals around the world. Open source software facilitates rapid development and release cycles. It enables developers to incorporate ready-made components into their application so they can quickly release...

SolarWinds and Log4j  ha ve made software supply chain security a topic of intense and scrutiny for enterprises and governments around the world.  Software Supply Chain attacks, generally carried out by profit threat actors and nation state actors are constantly rising. It can have significant impacts to both digital and physical worlds. In 202 0,  a major U.S. IT firm,  S olarWinds, was breached when attackers launched malicious code via its IT monitoring and management software, a platform used by large enterprises and government agencies. The hackers infiltrated not only SolarWinds but their customers as well.  In 2021,  a remote execution vulnerability in Apache’s Log4j turned the security world on its ear and  left countless users and organizations susceptible to data breaches and attacks. Since 2021, there has been a 650% YoY increase in software supply chain attacks.  In 2021, the president of the United States highlighted the importance of...

When we talk about software world, what’s the first thing that comes to your mind? Programming - right? Developers play a very important role in turning technology ideas into reality. It’s ultimately the code that runs on the computer providing an interface to the end users or systems. Empowerment of developers has evolved over the last few decades from assembly level programming to more sophisticated software programming. It continues to evolve and provide enormous opportunities to transform the life of a developer which in turn transforms the business that relies on technology.   When I started my professional career in late 90s, the technology world was limited but fascinating. Computer technology was something that every technologist wanted to be associated with. We had only a few options to choose from and I was fortunate to work on programming languages such as Java, Visual C++, etc. My first programming language Fortran (as part of my undergraduate course) was really di...