Securing the SDLC is a never-ending battle against hidden risks and formidable adversaries and requires security champions to share their wisdom.
New Relic Adds App Security Testing Tool to Observability Platform
New Relic made available a public preview of an application security testing tool that will be integrated into its observability platform.
Shift Left With DAST: Dynamic Testing in the CI/CD Pipeline
By focusing on application security like an attacker would, DAST can discover potential security threats that static testing methods might miss.
Communicating Common Web App Security Threats to Developers
Shift left involves providing developers with the context they need to prioritize and remediate threats appropriately.
Bionic Extends Application Security Posture Management Platform
Bionic this week added a pair of tools to its application security posture management (ASPM) platform that make it simpler to triage threats based on severity and attach a risk score. Josh Cho, senior director of global systems engineering at Bionic, said the Bionic Signals and Business Risk Scoring tools ingest data from third-party security […]
How to Avoid Risk When Using Multiple Low-Code Platforms
Organizations are still increasing their use of low-code/no-code (LCNC). But this adoption isn’t always consolidated around one tool—frequently, multiple low-code/no-code platforms are used under the same roof. In fact, Gartner predicts that by 2024, 75% of large enterprises will be using at least four low-code development tools for both IT application development and citizen development […]
Cycode Leverages eBPF to Secure CI/CD Pipelines
Cycode today added a Cimon extension to its application security platform that uses extended Berkeley Packet Filtering (eBPF) to thwart cyberattacks against continuous integration/continuous delivery (CI/CD) pipelines. Alex Ilgayev, head of security research for Cycode, said Cimon uses eBPF to inspect network connections, running processes and file modifications within a pipeline to learn standard behaviors. […]
GitGuardian Survey Surfaces Secrets Management Challenges
A survey of 507 IT decision-makers in the U.S. and the United Kingdom published today found 75% of respondents said a secret leaked from at least one application, with 60% noting that the leak caused issues for either the company, employees or both. Conducted by Sapio Research on behalf of GitGuardian, a provider of a […]
Cycode Adds ASOC Module to Streamline DevSecOps Workflows
Cycode has added a module to its platform for mapping metadata and events using graph technology that makes it simpler for application development and cybersecurity to consolidate alerts generated by their DevSevOps tools. Lotem Guy, vice president of product for Cycode, said the Cycode Application Security Orchestration and Correlation (ASOC) module will automatically discover all […]
How Application Developer Turnover is Shaping Security
Observing the developer job market for the past two years reveals a surprising truth that has a profound impact on technology organizations. In the “new normal” of hybrid work, life moves fast and there’s no sign of slowing down. Since 2021, we’ve witnessed all-time record demand for software engineering developers. The emergence of privately held […]
- « Previous Page
- 1
- …
- 3
- 4
- 5
- 6
- 7
- …
- 17
- Next Page »