Tag: application-security
-
2024 SC Awards Finalists: Best Application Security Solution
Tags: application-securityFirst seen on scmagazine.com Jump to article: www.scmagazine.com/news/2024-sc-awards-finalists-best-application-security-solution
-
Mastering API Compliance in a Regulated World
As we continue our Summer School blog series, let’s focus on a vital aspect of modern application security: the relationship between API posture gover… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/08/mastering-api-compliance-in-a-regulated-world/
-
What is Application Security Posture Management (ASPM)
Application Security Posture Management (ASPM) is a strategy designed to unify and improve the security of your applications. It pulls together variou… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/08/what-is-application-security-posture-management-aspm-2/
-
CNAPP and ASPM, Friends or Foes?
The backstories of AppSec and cloud security In an industry that moves so quickly and pivots so frequently, it’s easy to forget that the term and disc… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/08/cnapp-and-aspm-friends-or-foes/
-
DEF CON 32: What We Learned About Secrets Security at AppSec Village
Tags: application-securityAt DEF CON 32’s AppSec Village, we explored secrets security challenges, answered common questions, and shared how to detect and handle hidden credent… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/08/def-con-32-what-we-learned-about-secrets-security-at-appsec-village/
-
AI for application security: Balancing automation with human oversight
In this Help Net Security interview, Kyle Wickert, Worldwide Strategic Architect at AlgoSec, discusses the role of AI in application security, explori… First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/08/20/kyle-wickert-algosec-ai-application-security/
-
Innovations to power secure-by-design development
Secure Code Warrior unveils technology designed to help CISOs and AppSec teams ensure their projects remain safe and free of coding errors and vulnera… First seen on computerweekly.com Jump to article: www.computerweekly.com/news/366596500/Innovations-to-power-secure-by-design-development
-
Survey Surfaces Growing SaaS Application Security Concerns
A survey of 300 application and software development, IT and security leaders finds nearly half (45%) working for organizations that, in the past year… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/08/survey-surfaces-growing-saas-application-security-concerns/
-
That was then, this is now¦.Modernizing AppSec in Fast-Paced Development Environments
You are the weakest link. Hello. Ninety-one percent of organizations experienced at least one software supply chain security incident in 2023. Chan… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/08/that-was-then-this-is-now-modernizing-appsec-in-fast-paced-development-environments/
-
Contrast Security unveils ADR for application security
Tags: application-securityFirst seen on scmagazine.com Jump to article: www.scmagazine.com/brief/contrast-security-unveils-adr-for-application-security
-
Black Hat Fireside Chat: Here’s how ‘Active ASPM’ is helping to triage and remediate coding flaws
Application Security Posture Management (ASPM) arose a few years ago as a strategy to help software developers and security teams continually improve … First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/08/black-hat-fireside-chat-heres-how-active-aspm-is-helping-to-triage-and-remediate-coding-flaws/
-
AppSec evolution: Navigating the path to maturity
Tags: application-securityFirst seen on scmagazine.com Jump to article: www.scmagazine.com/resource/appsec-evolution-navigating-the-path-to-maturity
-
AppSec Webinar: How to Turn Developers into Security Champions
Let’s face it: AppSec and developers often feel like they’re on opposing teams. You’re battling endless vulnerabilities while they just want to ship c… First seen on thehackernews.com Jump to article: thehackernews.com/2024/07/appsec-webinar-how-to-turn-developers.html
-
First Annual OSCR Report Reveals 95% of Organizations Have at Least One Severe Security Risk Within their Software Supply Chain
OX Security, the pioneer in Active Application Security Posture Management (Active ASPM), today issued the OSC&R community’s inaugural software su… First seen on itsecurityguru.org Jump to article: www.itsecurityguru.org/2024/07/17/first-annual-oscr-report-reveals-95-of-organizations-have-at-least-one-severe-security-risk-within-their-software-supply-chain
-
The Future of Appsec is APIs | Impart Security
API security, microservices, decentralized applications, WAF, authentication, authorization, AI, security testing, response and enforcement, WAFs, sec… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/07/the-future-of-appsec-is-apis-impart-security/
-
Application Security Startup Heeler Raises $8.5 Million in Seed Funding
Heeler Security has raised $8.5 million in seed funding for its ProductDNA application security technology. The post Application Security Startup Heel… First seen on securityweek.com Jump to article: www.securityweek.com/application-security-startup-heeler-raises-8-5-million-in-seed-funding/
-
SAST All About Static Application Security Testing
Tags: application-securityStatic Application Security Testing (SAST) is a central part of application security efforts, so let’s get into the whats and whys behind this technol… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/07/sast-all-about-static-application-security-testing/
-
Why we need to automate web application security testing
Tags: application-securityFirst seen on scmagazine.com Jump to article: www.scmagazine.com/perspective/why-we-need-to-automate-web-application-security-testing
-
Application Security Posture Management und Cloud Insights native AppSec-Risiken mit Checkmarx analysieren
First seen on security-insider.de Jump to article: www.security-insider.de/checkmarx-neue-loesungen-aspm-cloud-insights-a-1debaef706c175231d82c350b1f66fa1/
-
Collaborate on Shifting Left: Why ‘AppSec Is a Team Sport’
Developers are using more and more open-source code because they want to move fast, said Cycode’s Lotem Guy. But the speed of development and the cont… First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/interviews/collaborate-on-shifting-left-appsec-team-sport-i-5398
-
MSSP Market News: Checkmarx, Wiz Advance Cloud, Application Security
First seen on scmagazine.com Jump to article: www.scmagazine.com/news/mssp-market-news-checkmarx-wiz-advance-cloud-application-security
-
What Building Application Security Into Shadow IT Looks Like
AppSec is hard for traditional software development, let alone citizen developers. So how did two people resolve 70,000 vulnerabilities in three month… First seen on darkreading.com Jump to article: www.darkreading.com/application-security/building-application-security-into-shadow-it
-
DAST Vs. Penetration Testing: Comprehensive Guide to Application Security Testing
For two decades or so now, web applications have been the backbone of many businesses, making their security paramount. Dynamic Application Security T… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/06/dast-vs-penetration-testing-comprehensive-guide-to-application-security-testing/
-
What is DevSecOps and Why is it Essential for Secure Software Delivery?
Traditional application security practices are not effective in the modern DevOps world. When security scans are run only at the end of the software d… First seen on thehackernews.com Jump to article: thehackernews.com/2024/06/what-is-devsecops-and-why-is-it.html
-
Back to the Future: What AppSec Can Learn From 30 Years of IT Security
Tags: application-securityHistory doesn’t repeat itself, but it often rhymes. As AppSec evolves towards a new playbook, here’s what we can learn from IT’s journey. Just over 20… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/06/back-to-the-future-what-appsec-can-learn-from-30-years-of-it-security/
-
Checkmarx unveils cloud-native application security services
First seen on scmagazine.com Jump to article: www.scmagazine.com/brief/checkmarx-unveils-cloud-native-application-security-services
-
Cyber Landscape is Evolving – So Should Your SCA
Traditional SCAs Are Broken: Did You Know You Are Missing Critical Pieces?Application Security professionals face enormous challenges securing their s… First seen on thehackernews.com Jump to article: thehackernews.com/2024/06/cyber-landscape-is-evolving-so-should.html
-
Proactive Application Security: Learning from the Recent GitHub Extortion Campaigns
A new threat actor group known as Gitloker has launched an alarming campaign that wipes victims’ GitHub repositories and attempts to extort them. Vict… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/06/proactive-application-security-learning-from-the-recent-github-extortion-campaigns/
-
Case Study: How Sungage Financial improved their application security within 1 week
Sungage Financial chose Escape’s API security solution to secure their new GraphQL APIs. Escape’s easy setup, actionable remediation, and GraphQL supp… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/06/case-study-how-sungage-financial-improved-their-application-security-within-1-week/
-
The State of AppSec in 2024: Expanded use, expanded attack surface
First seen on scmagazine.com Jump to article: www.scmagazine.com/feature/the-state-of-appsec-in-2024-expanded-use-expanded-attack-surface