Application Security

The latest News and Information on Application Security including monitoring, testing, and open source.

Mobile app security testing and development at the speed your business demands

Jan 23, 2024 By Corey Hamilton In Synopsys

Synopsys recently introduced static application security testing (SAST) support for the Dart programming language and the Flutter application framework to expand our coverage for mobile development teams that are tasked with delivering secure apps on multiple platforms. This builds on our support of more than 20 programming languages and 200 frameworks, and complements our existing Kotlin, Swift, and React Native support with another option for those focused on secure mobile app development.

Read Post

Synopsys

Read more about Mobile app security testing and development at the speed your business demands

AppSec Talks - Episode 1 with Rami McCarthy - Figma

Jan 22, 2024 By Kondukto In Kondukto

In this episode, we talk with Rami McCarthy from Figma about best practices in security programs including the roles of developers, and effective triage and remediation processes.

View Video

Kondukto

Read more about AppSec Talks - Episode 1 with Rami McCarthy - Figma

Beyond SBOMs: The Future of Software Supply Chain Security

Jan 22, 2024 By Panoptica In Panoptica

The recent executive order requiring SBOMs (Software Bill of Materials) of those supplying software to the federal government has been instrumental in advancing the conversation around software supply chain security – but SBOMs are just the tip of the iceberg, and quite possibly, not even the most interesting or promising part. Cisco distinguished engineer Ed Warnicke and Cisco technical marketing engineer Michael Chenetz were joined by Aeva Black, OmniBor Project – Microsoft, Brandon Lum, Guac and Google, Dan Lorenc, Wolfi/Chainguard, and Cole Kennedy, TestifySec.

View Video

Panoptica

Read more about Beyond SBOMs: The Future of Software Supply Chain Security

Speed vs. Security: New Frameworks for Protecting Cloud Native and Multicloud Environments

Jan 22, 2024 By Panoptica In Panoptica

Hear the latest thinking on how organizations can balance security and speed. In this session, get insights and advice from our distinguished panel of experts including: Gene Kim, researcher and bestselling author, The Phoenix Project: A Novel About IT, DevOps, and Helping Your Business Win, Kelsey Hightower, Distinguished Engineer, Google Cloud, and Stephen Augustus, Head of Open Source, Cisco, moderated by Michael Chenetz Technical Marketing Engineer, Cisco.

View Video

Panoptica

Read more about Speed vs. Security: New Frameworks for Protecting Cloud Native and Multicloud Environments

Mobile Application Security - From Vulnerabilities to Vigilance

Jan 19, 2024 By Harshit Agarwal In Appknox

Your mobile apps are your business's face to the world. As an app creator or business owner, credibility is everything, and security is the cornerstone upon which it stands. Now, with the digital ecosystem being highly susceptible to breaches, even a single slip in security can shatter the trust your users have in your brand, tarnishing the hard-earned credibility of your business. This is why mobile app security is key to your business’s growth.

Read Post

Appknox

Read more about Mobile Application Security - From Vulnerabilities to Vigilance

Good Application Security Posture Management Requires Great Data

Jan 17, 2024 By Dwayne McDaniel In GitGuardian

Discover how GitGuardian enhances Application Security Posture Management, ASPM, with top-notch code security and secrets detection and remediation coordination.

Read Post

GitGuardian

Read more about Good Application Security Posture Management Requires Great Data

NIS2: Who is affected?

Jan 16, 2024 By Roeland Delrue In Aikido

This is a question we get a lot from our customers. The NIS2 Directive’s wording is not always very explicit. NIS2 is a framework that countries need to implement. Because it’s a Directive and not a Regulation, each EU country has the autonomy to roll it out under their own interpretation. NIS2’s language is broad, making it challenging to get your head around, especially until countries publish their specifics.

Read Post

Aikido

Read more about NIS2: Who is affected?

How to Easily Generate An Accurate Software Bill of Materials (SBOM) with Black Duck | Synopsys

Jan 16, 2024 By Synopsys In Synopsys

Did you know that open source code constitutes up to 95% of the code in your applications? This creates a web of dependencies that can pose security, quality, and compliance risks. Black Duck provides a solution by helping you generate an accurate software bill of materials (SBOM) in minutes, giving you visibility into your software supply chain. Watch the video to streamline your SBOM generation process and take control of your software supply chain.

View Video

Synopsys

Read more about How to Easily Generate An Accurate Software Bill of Materials (SBOM) with Black Duck | Synopsys

AppSec Decoded: Reaching DevSecOps maturity | Synopsys

Jan 16, 2024 By Synopsys In Synopsys

Learn how to overcome today's DevSecOps challenges to achieve strong DevSecOps maturity.

View Video

Synopsys

Read more about AppSec Decoded: Reaching DevSecOps maturity | Synopsys

3 Critical Steps for Application Security Teams in 2024

Jan 12, 2024 By Jacob Garrison In CrowdStrike

Software development practices are rapidly changing, and so are the methods adversaries use to target custom applications. The rise of loosely coupled applications, along with an impressive increase in code deployment speed, has resulted in a growing attack surface with more software architecture and imported dependencies. Application security (AppSec) teams are often outnumbered by software developers and struggle to keep up with frequent code changes.

Read Post