Application Securityartificial intelligencecloudDevOpsDevSecOpsIoTmicroservicesmobilesoftware exposuresoftware security AppSec Is Dead, but Software Security Is Alive & Well Dec 4, 2018 by Matthew Rose Everyone agrees that an enterprise’s application ecosystem must be protected, especially when data breaches are reported with alarming frequency and the average total cost of a breach comes in at $3.62 million. However, defeating increasingly severe threats requires a holistic approach to security, one that places an emphasis on managing not only application vulnerabilities but all Read More › Application Securityartificial intelligencecloudDevOpsDevSecOpsIoTmicroservicesmobilesoftware exposuresoftware security
Application SecurityDevOpssoftware security Why Security and DevOps Desperately Need Couples Counseling Aug 26, 2018 by David Spark While at the 2018 Black Hat Conference in Las Vegas I asked attendees point blank if they think that security and DevOps should be in couples counseling. The universal response was a laugh and then a resounding, “Yes.” The reason couples go to couples counseling is because they’re not getting along. They’re not communicating. Usually, only Read More › Application SecurityDevOpssoftware security
Application SecurityDevOpssoftware exposuresoftware security Checkmarx Report: Tackling Software Exposure in the DevOps Cycle Aug 7, 2018 by Maty Siman Today, in an effort to better understand the evolving nature of software delivery and the role security plays, we released a new report, “Managing Software Exposure: Time to Fully Embed Security into Your Application Lifecycle,”which we commissioned with FreeForm Dynamics in coordination with The Register. The report aggregates input from 183 respondents worldwide, the majority Read More › Application SecurityDevOpssoftware exposuresoftware security
Application SecurityDevOpssoftware exposure The Era of Software Exposure Aug 1, 2018 by Bernd Leger Software is at the backbone of the digital transformation We live in a world of massive digital transformation. The technical backbone of this transformation is software. Software can be found everywhere. It is in our homes, in our phones, and in our businesses. Over 80% of the code in today’s software applications is open source. Read More › Application SecurityDevOpssoftware exposure
Application SecuritySASTSecure CodingSource Code Analysisstatic code analysis Introducing the Checkmarx Certified Engineer Program (CxCE) Aug 1, 2018 by Liora R. Herman If you were to take a look at the current job market for developers, application security engineers, solution architects, penetration testers, or systems engineers, it’s clear that application security testing skill sets are in high demand. You’ll also notice that Checkmarx has become synonymous with application security testing. Gartner further validated this by naming Checkmarx Read More › Application SecuritySASTSecure CodingSource Code Analysisstatic code analysis
Application SecurityRansomware Decrypting JobCrypter Mar 19, 2018 by Erez Yalon Ransomware has been a growing issue for some time now. It has evolved into a big business, moving millions of dollars yearly from victims’ pockets into those of attackers. The modus operandi of ransomware authors is to infect your machine through any vector (phishing, drive-by browser exploits, waterholing, etc.) and then proceed to encrypt your important files. Read More › Application SecurityRansomware
Application SecurityOWASP Top 5 OWASP Resources No Developer Should Be Without Jan 9, 2018 by Sarah Vonnegut Writing secure code is now a must for developers. The rising number of attacks on organizations big and small and the fallout for companies who’ve been breached are growing. As such, security is finally moving out of the periphery to become a mainstay for business continuity. Read More › Application SecurityOWASP
Application SecurityData Security Breach Recap: The Biggest Data Breaches of 2017 Dec 31, 2017 by Arden Rubens From a Republican National Committee contractor exposing voting data on nearly 200 million people to Equifax revealing a breach impacting over 143 million people – it’s safe to say that when it comes to data breaches, 2017 has kept us on our toes. So much so that more data was lost or stolen in the Read More › Application SecurityData Security Breach
Application SecurityOWASP A Closer Look: OWASP Top 10 2017 – Application Security Risks Dec 3, 2017 by Arden Rubens Open Web Application Security Project (OWASP) is an organization filled with security experts from around the world who provide information about applications and the risks posed, in the most direct, neutral, and practical way. Since 2003, OWASP has been releasing the OWASP Top 10 list every three/four years. The list consists of the top biggest Application Security Read More › Application SecurityOWASP
Application SecurityOWASP INFOGRAPHIC: OWASP Top 10 Application Security Risks Nov 30, 2017 by Arden Rubens The OWASP Top 10 Application Security Risks 2017 (PDF) is out. The list takes a good look at the most critical application security risks facing organizations and developers today, with the big goal of raising awareness, upping the knowledge, and helping security teams and developers release secure applications. Read More › Application SecurityOWASP